Skip to content
Dialllog, collaborate to lead

Security

Security, built around encrypted email

The model

The Dialllog security model

Single-tenant setup

Your firm's data runs in its own isolated environment, never pooled with other firms.

Encrypted email

Your email content is encrypted while it travels and while it is stored.

Secure mailbox access

We never store your mailbox password, and you can disconnect access at any time.

Permission-based access

Every relationship and deal is visible only to the people you give access to.

Two-factor authentication

Add a second login step with an authenticator app; admins can require it for the team.

Audit logs

A record of who accessed what, available for review.

What Dialllog protects

Dialllog stores and organises relationship history, company records, deal context, notes, email, attachments, and workflow activity. That record is sensitive because it reflects the firm's relationships and decision history. The security model treats it accordingly.

Single-tenant by design

Every firm runs in its own isolated environment. Your relationships, emails, and deal history are never mixed into a shared database with other firms. That separation is a real advantage for private capital: your most sensitive context is kept apart at the infrastructure level, and access, export, and deletion stay clean and contained to your firm.

Secure mailbox connection

Users connect Outlook, Gmail, or IMAP mailboxes through Nylas. Dialllog uses OAuth-based access and does not store mailbox passwords. Access can be revoked from the user's Microsoft or Google account.

Nylas is used for mailbox connectivity and is a SOC 2 Type II provider.

Encrypted email

Email is the most sensitive data Dialllog holds, so it is treated that way. Your email content is encrypted while it travels between systems and while it is stored, and incoming email updates are verified before they are saved. Attachments are kept separately and reached only through short-lived secure links.

Permissioned workflow access

Mailbox content and workflow activity are scoped to the mailbox owner and users granted access through workflow permissions. This keeps sensitive deal context tied to the right workflows and visible only to the people who should work with it.

Two-factor authentication

Dialllog supports two-factor authentication through TOTP, compatible with authenticator apps. Tenant admins can require 2FA for members where enabled.

Auditability

Audit logs record relevant access and operational events for review. More detailed security documentation is available during procurement review.

How mailbox data flows

A public-safe view of the data flow

  1. 1User connects mailbox through OAuth.
  2. 2Nylas handles mailbox provider connectivity.
  3. 3Dialllog receives verified email updates.
  4. 4Data is routed into your firm's own isolated environment.
  5. 5Records are encrypted and permissioned.
  6. 6Authorised users view context inside Dialllog.

Procurement

Security documentation for procurement review

Security documentation is available during procurement review, including mailbox data-flow detail, sub-processor information for mailbox connectivity, encryption approach, attachment handling, and access-control model.

Request security documentation during your demo.

Ask Dialllog

Role-based, workflow-scoped access governs who can ask what. Within their permissions, your team can put questions like these to the firm's record.

  • Who can access this mandate?
  • Which users exported data last month?
  • Which relationships are visible to this team?
  • Who lost access when this person offboarded?

Frequently asked questions

How does Dialllog connect to email securely?

Dialllog connects to Outlook, Gmail, and IMAP mailboxes through Nylas using OAuth-based access. Dialllog does not store mailbox passwords, and users can revoke access from their Microsoft or Google account.

Is Dialllog single-tenant?

Yes. Each firm's data runs in its own isolated environment rather than being pooled in a shared database with other firms, so your sensitive relationship and deal context stays separated.

How is email data protected while it travels?

Email and application traffic is encrypted while it travels between systems, and incoming email updates are verified before they are saved into your firm's environment.

How is email data protected while it is stored?

Email content, headers, and activity records are encrypted while they are stored. Attachments are kept separately and reached only through short-lived secure links.

How does Dialllog control access to sensitive deal context?

Mailbox content and workflow activity are scoped to the mailbox owner and users granted access through workflow permissions, so sensitive relationship and deal context stays tied to the right workflows and teams.

Does Dialllog support two-factor authentication?

Yes. Dialllog supports two-factor authentication through TOTP, compatible with authenticator apps. Tenant admins can require 2FA for members where enabled.

What security information is available during procurement?

Dialllog can provide security documentation during procurement review, including mailbox data-flow detail, sub-processor information for mailbox connectivity, the single-tenant setup, encryption approach, and access-control model.

Keep reading

See what your firm already knows.

In 20 minutes, we can map where your deal context sits today and show how Dialllog would turn it into firm memory.

Book a 20-minute demo