Skip to main content
This is an Enterprise plan feature.

What security do you get?

Organization security settings cover four areas.
  • Authentication: Unify sign-in with your corporate identity system through SAML SSO.
  • Access control: Restrict access to specific IPs and govern share link visibility with policies.
  • Personal data: Mask the names and emails shown on screen with a masking policy.
  • Baseline security: Encryption at rest, storage in the Seoul region, and no AI training on your data apply to every plan. See Privacy and security.

Unify sign-in with SSO

Tiro supports SAML-based SSO. Connect an IdP such as Okta or Azure AD (Microsoft Entra ID), and your members sign in to Tiro with their corporate accounts.
  • You can run SSO-only. Block other methods like email and social sign-in, and account management lives entirely in your IdP.
  • Closed-network environments without direct access to external authentication services are supported too.
IdP setup happens together during onboarding.

Restrict access to your network

Limit workspace access to approved IPs only. This allows connections through your corporate network or VPN exclusively. If you need a static IP to register in your firewall, that’s supported as well. The exact configuration is worked out during onboarding.

Turn on personal data masking

Turn on personal data masking through a workspace policy, and part of the names and emails shown on screen is hidden. This option fits environments like call centers, where customer personal data comes up often in conversations. Manage the maximum visibility, longest expiry, and allowed company domains for share links through policy, and revoke active links from one place. For details on how this works, see Link sharing security.

Frequently asked questions

Can I get security review materials?

Yes. Tiro holds ISO/IEC 27001:2022 certification and has completed a SOC 2 Type 1 examination. Security review materials such as audit reports, data locations, and the subprocessor list are provided after an NDA is signed. Reach out to our sales team.

Can I store data in a specific region only?

Note data is stored in the AWS Seoul region by default. If you need a dedicated VPC or a different region, that can be arranged in your contract.

What does the onboarding process look like?

Leave an inquiry, and our sales team reviews your organization’s security requirements and designs a tailored setup with you. A custom onboarding session and a hotline are included too.
Related pages: Privacy and security · Link sharing security · Tiro plans