Trust & Security Center
Transparency into our infrastructure, compliance frameworks, and operational uptime for mission-critical utility dispatch.
Data Encryption
All data in transit is encrypted using TLS 1.3 or higher. Data at rest, including tenant contact information and generated PDF invoices, is secured using AES-256 block-level encryption within our private cloud.
SOC 2 Type II
Spivey Utility Core undergoes independent third-party audits annually. Our SOC 2 Type II report attests to the security, availability, and processing integrity of our infrastructure.
System Architecture & Resilience
High Availability & Uptime
Our infrastructure is deployed across multiple isolated Availability Zones (AZs) to prevent single points of failure. We maintain a strict 99.999% Service Level Agreement (SLA) for core routing APIs.
Vulnerability Management
We employ continuous dynamic application security testing (DAST) and static application security testing (SAST). Critical patches are deployed seamlessly using zero-downtime blue/green deployment strategies.
Responsible Disclosure
Security researchers who identify potential vulnerabilities within the Spivey Utility Core platform are encouraged to submit their findings via encrypted PGP communication to security@beckyspivey.com.