Security at Meetical

We’re fully commited to data security and privacy.

Cloud FORTIFIED

DATA CENTER READY

Our partners

Security design

Built on the shoulders of giants, one of the strengths of Meetical is the security and privacy by design approach.

Your meeting data already lives in Atlassian Cloud, Google Cloud, and Microsoft 365 — Meetical keeps it that way. Rather than pulling your data into our own infrastructure, we connect directly to these platforms via secure APIs, processing data on demand and storing it where your existing security policies already apply. No shadow databases, no data duplication. Our 2026 security roadmap includes: (1) Migration of all apps to Atlassian Forge, enabling full data residency; (2) SOC2 Type II certification; (3) “Runs on Atlassian” zero data egress for Task Reports.

All integrations are authenticated via OAuth 2.0 with encrypted, revocable access tokens — no passwords are ever stored. As a Swiss-based company, we are committed to GDPR compliance and offer a Data Processing Agreement (DPA) to all customers upon request. Your data residency settings in Atlassian, Google, or Microsoft apply fully, and our 2026 Forge migration hardens security and future-proofs core apps by reducing data egress. A full list of sub-processors is available at meetical.io/security.

Our best practices for security

01

Data protection and privacy

We protect your data both in transit and at rest with industry-standard security. In transit we apply TLS 1.2+ with modern cipher suites. At rest, all meeting data that is stored permanently is protected by Atlassian’s enterprise-grade data security. If you use the Meetical Bot and Meetical AI Assistant*, data is kept just long enough to process transcript and recordings. Where applicable, we follow a zero data egress policy** and minimise data retention to the shortest processing time necessary. Our terms and privacy policy cover all details on how we and our sub-processors collect, use, protect or otherwise handle your data. A GDPR-compliant DPA is available upon request.

* Meetical AI is in BETA. Recordings and transcripts are stored securely on partner platforms for the shortest time possible before deletion. Moving forward we even provide the option to stream data directly to Confluence (with transcription accuracy tradeoff).

** Task Reports for Jira/Confluence is about to receive the “Runs on Atlassian” certification for zero data egress (Q1 2026). MeeticalMeetings for Jira/Confluence is moving to the Forge Framework with data residency feature implementation (Q2 2026).

02

Access management

To access our apps, users will exclusively leverage industry-standard techniques (based on Atlassian, Google or Microsoft). Relying on these practices for authentication eliminates many attack vectors from the start. Internally, we closely monitor who has access to which systems. While every employee gets access to knowledge, only senior engineers and trusted members get access to production classified information.

03

Certifications

We’re recognized as “Cloud Fortified” and “Cloud Security Participant” by Atlassian’s security programs. This assessment is based on the CAIQ-lite assessment and you can also request the full CAIQ-lite questionnaire from us. As part of the Cloud Security program, we use BugCrowd, a bug bounty program, which onboarded over a hundred security engineers to run penetration and security tests for our Apps. Any issues found must be closed by defined SLAs within the program. For data storage, Atlassian holds industry-leading certifications including SOC2 and ISO 27001. We are pursuing SOC2 Type 2 certification in 2026.

Meetical

Cloud Security Participant

by
‍

+
‍

Atlassian Cloud

04

Scalability and Reliability

From day one, we’ve built our applications in a way to be ready for horizontal scaling, powered by Heroku. While their data services might not be the most economic solution, we benefit from high availability, password rotation mechanisms, redundancy, automatic backups, managed updates and much more – for both our apps and data storages.

05

Incident Management

Despite all best efforts, no system is 100% secure. Security incidents can occur and we are ready to address them quickly. As an Atlassian-centric organization, we use Jira Service Management to help us track and resolve customer requests as well as any critical security incidents. Furthermore, for any critical security issues we can escalate quickly to Atlassian and our partners to collaborate and resolve any issues rapidly.

Summary

What makes Meetical one of the most secure meeting management software tools in the world

Our close collaboartion with an industry leader like Atlassian for data storage and data security

Additional partnerships with industry-leading Authentication and API providers like Google and Microsoft

Best-in-class PaaS partners for our own cloud and data service

Reliable security best practices and standards

Resources and Links

Download the 2026 Meetical Security Whitepaper Meetical Security Whitepaper
Our Terms and Conditionshttps://www.meetical.io/terms-and-conditions
Our Privacy Policyhttps://www.meetical.io/privacy
Trust Center Atlassianhttps://www.atlassian.com/trust/security
Security principles of our PaaS provider Herokuhttps://www.heroku.com/policy/security
Request security assessment from support https://meetical.io/support
Any questions?Get in touch with us