EnvReg
Request pilot
Security

Security, governance, and auditable provenance

How EnvReg protects customer data and keeps every report traceable and defensible — access controls, audit trails, LGPD compliance, and regulatory alignment.

Regulatory alignment
  • Brazilian Forest Code (Law 12.651/2012)
  • IBAMA NI 14/2024
  • EUDR
  • SBCE
  • LGPD
Security & compliance

Secure infrastructure. Documented compliance.

EnvReg is built for enterprise teams that need verifiable security, LGPD compliance and a clear professional responsibility chain.

LGPD

Owner personal data encrypted at rest. Legitimate-interest legal basis. Documented deletion workflow on request.

Encryption in transit

HTTPS / TLS 1.3 across all routes. No data transmitted in clear text between client and server.

Audit logs

Full pipeline record per report: code version, datasets used, geometry hash, immutable timestamp.

Data retention

Documented policy. Client data not retained beyond what is necessary. Report retention configurable per organisation.

Responsibility model

EnvReg produces auditable technical evidence. Professional decision and ART signature belong to the CREA-registered engineer — same legal model as QGIS and ArcGIS.

Enterprise documentation

Security one-pager, DPA and MSA available on request. Technical review for enterprise integrations.

Full security and compliance documentation available under NDA for enterprise partners.