Product Security Features

Assign predefined or custom roles to regulate access to platform features, tailored to organizational needs. A structured RBAC model ensures privileges match each user's responsibilities, preventing unauthorized actions.

Assign roles with granular permissions that define exactly what each user can do at a feature level, giving organizations precise control over content, analytics, and administrative settings, tailored to your organizational scope.

Centralize authentication by integrating with any SAML 2.0-compatible Identity Provider, including Okta, Salesforce, and Google. Simplify user access through SSO integration, enforcing MFA and corporate security policies.

Control who joins your platform by restricting sign-ups to corporate email domains and blocking personal email registrations. For tighter control, configure invitation-only access — ensuring only designated users can create an account.

Streamline identity governance by synchronizing platform access with your HRMS or active directories. This ensures accounts are instantly provisioned, modified, or deactivated when an individual's employment status shifts.

Automate group membership by creating rules based on user profile attributes like job title, department, and region. This keeps content access continuously aligned with each user's current role, eliminating the need for manual updates.

Access to analytics dashboards is governed by user roles and permissions, ensuring managers and admins can only view engagement data for the teams and content they are authorized to see.

Support secure access for non-SSO users with two preset password strength options, covering both basic password rules and stronger alphanumeric requirements.

A 7-day absolute session timeout is enforced by default, with sessions extendable to 30 days when users choose “Stay signed in” at login. Mindtickle Support can help configure idle session timeout values based on your organization’s requirements.

Platform APIs require secure authentication via API keys or JWT, ensuring protected machine-to-machine communication for all integrations and custom solutions. API access is permission-based, with User and Content Management APIs restricted to super administrators.

Keep your learning environment secure with anti-malware scanning for all uploaded files, detecting viruses, ransomware, and other threats, enabled on request through Mindtickle Support.

Track all administrative activities and system actions through detailed audit logs, supporting investigation across user management, content assignment, and profile management. Logs are fully searchable, filterable, and exportable, enabling in-depth analysis.

Track all outgoing emails with logs capturing recipient details, subject lines, sender information, and delivery status. Review delivery statistics from the last 60 days to troubleshoot communication gaps or failures.

Export a detailed CSV report of all DSR visitor activity — including contact details for non-anonymous visitors, content viewed, time spent, and downloads. This provides a clear audit trail of prospect engagement for tracking and compliance purposes.

Control content access by linking user groups to series or modules — automatically assigning content when users join a group and revoking it when they leave. This ensures permissions are always timely, accurate, and aligned with group membership.

Prevent data exfiltration by controlling download permissions in Digital Sales Rooms, Asset Hub, and Content Center, restricting asset customization for critical files, and labeling assets as "Internal" or "External" to indicate approved audiences.

Assign targeted collaborator permissions across series, Asset Hub, Content Center, and groups, controlling actions like content development, learner management, and analytics access. Collaborators can be added manually, by role, or dynamically through group-based automation.

Set expiration dates on sensitive or time-bound content to proactively manage asset lifecycles, with automated reminders alerting contributors when updates are required. Archive or permanently delete obsolete files to keep your content library lean and accurate.

Access analytics data through Snowflake Secure Data Sharing for scalable reporting. Direct, ready-to-query access provides detailed information on modules, users, and performance stats.

Protect DSRs with layered access controls, including email and domain restrictions, passcodes, and expiration dates. Allow anonymous access or enforce verification through email and one-time PIN, while blocking specific domains.

Admins can manage user data by editing details, replacing usernames, and removing profile pictures, while controlling profile field visibility, editability, and requirements to support data accuracy and PII governance.

Admins have full control over profile fields — defining whether each field is visible, editable, or mandatory for users to complete. This ensures organizations manage PII collection and visibility in line with privacy requirements.

Meet compliance requirements like 21 CFR Part 11 with e-signature support for Course and Quick Update modules. Learners re-authenticate with their credentials before signing, ensuring the identity of every signer is verified.

Set recording preferences — external, internal, or all calls — to align with your organization's privacy standards. For sensitive meetings, hosts can disable the bot individually, move it to a waiting room, or remove it entirely.

Manage call recording sharing across internal or external audiences with controls for access scope, disabled downloads, transcript inclusion, and link expiry, with the ability to revoke access and track engagement.

Choose which privacy policy — Mindtickle's or your own — is displayed to DSR visitors, with geo-targeted consent workflows ensuring compliance with GDPR and other regional regulations.