Security & Trust

Security you can verify, stated honestly

Two things matter for LinkedIn outreach: protecting your data, and protecting your accounts. Below is exactly where we stand on each — clearly labeled as shipped, in progress or planned. We never claim a certification we don't have.

Shipped In progress Planned

LinkedIn account safety

The security question unique to LinkedIn outreach: keeping accounts healthy and your own profile out of harm's way.

Shipped

Managed ambassador accounts

Outreach runs on managed accounts, never your personal profile — so your reputation is never at risk.

Shipped

One dedicated proxy per account

Each sender has its own stable residential IP and geography, isolating risk between accounts.

Shipped

Human-like pacing & daily caps

Randomized delays, quiet hours and per-account limits keep sending patterns natural.

Shipped

Automatic warming

Accounts arrive pre-warmed and stay warmed, so you never ramp from cold.

In progress

Checkpoint detection & auto-pause

Detecting security checkpoints and pausing affected accounts automatically.

Data & privacy

How we handle the personal data you and your prospects entrust to us.

Shipped

GDPR & UK GDPR alignment

We process personal data lawfully; see our Privacy Policy for legal bases and your rights.

Shipped

CCPA alignment

California residents' rights are honored under our Privacy Policy.

Shipped

Data ownership stays with you

Your leads, messages and campaign data are yours. Export anytime; deletion on request.

In progress

Data Processing Agreement (DPA)

A signable DPA for customers who process EU personal data. Request one via security@topclozer.com.

In progress

Subprocessor list

A published, current list of the vendors that help us run the service. Available on request today.

Planned

Configurable data retention

Self-serve retention windows for campaign and reply data.

Infrastructure & encryption

The technical foundations that protect data in transit and at rest.

Shipped

Encryption in transit (TLS)

All traffic is served over HTTPS/TLS.

Shipped

Encryption at rest

Data stores are encrypted at rest by our infrastructure provider.

In progress

Backups

Automated, tested backups with defined recovery objectives.

Planned

Business continuity plan

Documented continuity and disaster-recovery procedures.

Access & authentication

Controls over who can access what.

Shipped

Role-based access (workspaces)

Owner/admin/member roles and isolated client workspaces for agencies.

Shipped

Signed, httpOnly sessions

Authentication uses signed, httpOnly cookies.

Planned

SSO / SAML

Enterprise single sign-on. Talk to us if this is a requirement.

In progress

Audit log

Admin-visible activity trail across the workspace.

Compliance & certifications

We only claim what's true. Here's exactly where we stand.

Planned

SOC 2

On our roadmap. Not yet certified — we won't claim otherwise.

Planned

ISO 27001

Under evaluation for a future stage.

Shipped

Responsible disclosure

Report a vulnerability to security@topclozer.com; we'll acknowledge and work with you in good faith.

Need something for procurement?

Security questionnaires, a DPA, or a subprocessor list — email security@topclozer.com and we'll help you evaluate us.