Compliance & Security
Last updated: April 11, 2026
Gift of Gab Tech Inc. is committed to protecting customer data and maintaining the highest standards of security and privacy. Below you will find our compliance documentation, security practices, and contractual agreements available to current and prospective customers.
Security Overview
Encryption standards, infrastructure details, access controls, incident response, and penetration testing practices.
Data Processing Agreement (DPA)
Standard contractual terms governing how EMMA processes customer data, including sub-processors, retention, and breach notification.
Business Associate Agreement (BAA)
For clients in healthcare-adjacent industries who require HIPAA-aligned safeguards for protected health information.
SOC 2 Readiness Statement
Overview of controls aligned to AICPA Trust Service Criteria and our roadmap toward SOC 2 Type II certification.
Need a signed agreement or detailed report?
Enterprise customers can request executed copies of our DPA, BAA, or a detailed SOC 2 readiness report. Our team typically responds within one business day.
Request compliance documents