What does Ferretly do?

Ferretly is an AI-powered social media background screening platform that analyzes publicly available online content to surface behavioral risk signals for hiring, compliance, and brand protection.

Is Ferretly compliant with FCRA and other regulations?

Ferretly is designed with regulatory compliance at its core. Its workflows support Fair Credit Reporting Act requirements and align with EEOC and GDPR guidance when used for employment-related social media screening.

Ferretly is used by employers, staffing and background screening providers, government agencies, financial services organizations, healthcare providers and brands that want deeper insight into digital behavior than traditional background checks provide.

What data sources does Ferretly analyze?

Ferretly analyzes public content across major social media platforms and can incorporate web, news and media sources to build a clearer picture of digital behavior over time.

How long of a history can Ferretly review?

Depending on the plan and use case, Ferretly can review up to approximately ten years of publicly available social media content, with options for continuous monitoring going forward.

Security

Last Modified: Jan 30, 2026

At Ferretly, we uphold the highest standards of security, compliance, and privacy to protect the data entrusted to us. Our governance practices are designed to minimize risk and ensure the confidentiality, integrity, and availability of our systems and customer data.

DATA ACCESS CONTROL

Access to all corporate and customer data is granted based on principles of least privilege and need-to-know governed by role and individual user profiles.

DATA PROTECTION AND AUTHENTICATION

Ferretly encrypts data at rest and in transit using AES 256-bit and TLS 1.2. Application access is based on configurable permissions. Ferretly utilizes MFA to prevent unauthorized access to the systems and application.

Security Of Information

Ferretly abides by all applicable state and federal laws pertaining to the security of data supplied to it or collected by it. Ferretly will use industry-standard physical, technical, and administrative security measures and safeguards to protect the confidentiality and security of “Personally Identifiable Information.” For example, Ferretly will employ mechanisms to help maintain a secure network, encrypt back-up data, and establish limits on employee access to information.

PHYSICAL SECURITY

Ferretly uses Microsoft Azure as its primary hosting environment, and we leverage redundant data centers residing in the United States of America to store and replicate both application and data.

SECURITY COMPLIANCE

Ferretly has obtained a SOC 2 Type II assessment provided by independent third-party auditors and we perform annual penetration tests. We are compliant with European Union General Data Protection Regulations (GDPR) as applied to Ferretly, and supports customers’ own compliance programs through product features, integration, and configuration options, as required by our customers. Ferretly complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/. Ferretly aligns its practices with Canadian privacy laws, specifically the Personal Information Protection and Electronic Documents Act (PIPEDA) and similar provincial legislation. Lastly, Ferretly conforms to all United States, State Social Media Privacy laws. To learn more visit https://help.ferretly.com/kb/guide/en/social-media-privacy-laws-FDvWXCfU1W/Steps/4853630.

CONTACT US

If you have any questions or suggestions about our security and privacy controls, do not hesitate to contact us at

info@ferretly.com.