We are enterprise ready

Bringing innovation to your company must be done safely and Cloverleaf checks all the boxes for each of your compliance partners. We have invested in ensuring your employees’ data is protected, that their privacy needs are handled and that you can serve everyone fairly and ethically.

Last Updated: September 10, 2024

YOUR DATA IS SAFE WITH Cloverleaf

Cloverleaf meets both the SOC2 Type II trust services criteria for Privacy, Security, Confidentiality, Integrity, and Availability and the ISO 27001 standards for Information Security Management Systems. Data you store in Cloverleaf is yours – we put our security program in place to protect it, and use it only as outlined in our Terms of Service and Privacy Policy.

Accessibility is Key

Cloverleaf is about coaching for everyone and part of bringing scaled coaching to everyone in your organization is about ensuring that employees with disabilities can use all the great Cloverleaf features that everyone has access to. We are committed to following the W3C guidelines and other applicable web accessibility laws. A VPAT can be made available upon request.

there's science behind what we do

To ensure that our assessment results are as accurate as possible, we work with industry-trusted assessment providers and any new providers are thoroughly vetted before being considered for the platform. All coaching content goes through a rigorous process before being approved for users.

Our content process:

All source content comes directly from validated assessment partners with decades of experience.
Source content is used to craft tips that feature our core coaching elements: insight or observation, behavior, and action.
Using computer-aided text analysis (CATA) and culture and gender bias dictionaries, content is reviewed for biases.

All content is distributed with a feedback loop. Users can rate tips as helpful or unhelpful, along with an option to explain why they rated that way. This 360 degree validation ensures we have reliable data.

In-Platform Data Consent model

In the Cloverleaf platform, each user (or employee) gets to choose what type of coaching they receive, how they receive it, and who else they get coaching on. This allows Cloverleaf to stay in compliance with GDPR and other applicable data privacy regulations.

FAQs

What are Cloverleaf’s stances on AI and Privacy?

Cloverleaf closely follows advances in AI legislation and Privacy, and builds following Privacy Profession best practices to stay ahead of the changing legislative landscape. You likely have concerns about legal exposure — we know, and we have your back. On the Privacy front, we have IAPP-trained professionals scrutinizing our practices for using and storing data. On the AI front, each advance we make is calculated to stay well outside of legal danger zones — and we are building with the idea that customers’ comfort with AI may vary — we want to help you utilize only the features you are comfortable with. You can read more about our stance on AI here.

What customer data does AI have access to?

The only customer data that we feed into our AI systems is anonymized query data from insight searches.

How does your AI solution handle data privacy and what measures are taken to ensure the privacy of our data?

Each query is stripped of all identifiers that tie it back to the authoring customer. We also strip out all names recognized by our system before feeding them into our AI system. This removes all identifiable information that would link a query back to a customer. We store these queries in an encrypted way that only allows the application to operate on them, which allows customers to retrieve their search history.

Will our sensitive information be used?

Our AI system will uses queries as a signal to deliver more relevant tips as part of your daily coaching. Customers have the ability to clear all query history. Cloverleaf will never share customer search queries with their organization.

Are you SOC-2 or ISO 27001 certified?

Cloverleaf is both SOC 2 Type II and ISO 27001:2022 certified! Additional information is available at https://trust.cloverleaf.me/.

Will Cloverleaf sell my data or my organization’s data?

No! Cloverleaf is opposed to selling customer data. Cloverleaf will only use your data as described in our Privacy Policy and Terms of Service.

How Does Cloverleaf Keep Its Supply Chain Secure?

Whether you think in terms of supply chain, vendors, 3rd/nth-party management, or subprocessors, you need to know that the company you are contracting with is ensuring that the companies they are contracting with are keeping your data safe. Cloverleaf regularly evaluates its vendors for high security and reliability standards that match what you expect from us, and Cloverleaf ensures that the appropriate legal safeguards are in place. All third parties that touch personal data are listed here.