Security
Built for the people who ask the hard questions.
Presify is built for IT admins, so it’s built to the standard IT admins expect: read-only, tenant-isolated, encrypted, and audited.
Read-only, minimal scope
Presify reads Microsoft Teams presence status only. It never accesses message content, calls, files, or calendars — the smallest footprint that answers the question.
Tenant isolation
Every record is scoped to your Microsoft tenant and enforced at the database layer. Cross-tenant access is a hard boundary, tested on every change.
Encryption
Data is encrypted in transit and at rest. Access tokens are encrypted with managed keys and never written to logs.
Least-privilege access
Microsoft Graph access is granted by a one-time admin consent and limited to the permissions Presify actually uses. Internal access is least-privilege and MFA-enforced.
Audit logging
Every state-changing action is recorded to an append-only audit log naming the actor, the action, and the target — including admin actions.
Microsoft-native, no agents
Presify runs on Microsoft Graph with admin consent. There are no endpoint agents to install and nothing running inside your network.
SOC 2 posture
Presify is engineered to SOC 2 standards — the technical controls (encryption, access control, tenant isolation, audit logging) are in place today. Formal SOC 2 certification is planned; we’re happy to discuss our security posture with your team.