Overview

Mural's "Trust & Security" framework is designed to meet the stringent IT and regulatory requirements of modern enterprises. By implementing rigorous security, reliability, compliance, and privacy measures, Mural ensures that organizations can collaborate effectively without compromising data integrity or confidentiality. Trusted by 95% of the Fortune 100 and customers in highly regulated industries such as financial services, government, and healthcare, Mural provides a secure environment for teams to innovate and work together.

Features and Capabilities

• Security Measures:
  • Dedicated Security Team: A specialized team is responsible for implementing and maintaining controls to safeguard customer data at every layer.​
  • Single Sign-On (SSO) with SAML 2.0: Streamlines user authentication by allowing access through existing enterprise credentials.​
  • SCIM Provisioning: Automates user provisioning and de-provisioning, ensuring that only authorized personnel have access.​
  • Two-Factor Authentication (2FA): Adds an extra layer of security for both members and guests accessing the platform.​
• Compliance Standards:
  • Certifications and Attestations: Mural maintains active SOC 2 Type 2 and ISO 27001 certifications, demonstrating adherence to high information security standards.​
  • Regulatory Compliance: The platform complies with global regulations, including GDPR and CCPA, ensuring user data is handled responsibly.​
• Data Protection:
  • File Type Restrictions: Administrators can control the types of files that can be uploaded, reducing the risk of malicious content.
  • Data Residency Options: Organizations can choose data storage locations to meet regional compliance requirements.​
  • Bring Your Own Key (BYOK) Encryption: Offers organizations control over their encryption keys, enhancing data security.​
• Information Governance:
  • Audit Logs and SIEM Support: Provides detailed logs of user activities, aiding in monitoring and compliance reporting.​
  • eDiscovery Capabilities: Facilitates the identification and retrieval of information necessary for legal proceedings.​
  • Reporting Tools: Delivers insights into platform usage and security metrics.​
• Collaboration Controls and Insights:
  • Guest Access Management: Administrators can set custom deactivation periods for guest accounts, ensuring temporary access is appropriately limited.​
  • Password-Protected Links: Enhances security for shared content by requiring passwords for access.​
  • Visitor Link Expiration: Allows setting expiration dates for shared links, controlling the duration of external access.