Skip to content
Olivasal Olivasal

Trust & operations

Security & encryption

End-to-end encryption, transport security, audit logging, and retention.

Olivasal is built for teams that own their data. Encryption is per-meeting, and admins keep a full audit trail.

End-to-end encryption (E2EE)

Turn on E2EE for a meeting and the server becomes a blind relay — it routes encrypted media but can’t read it.

  • The meeting key is minted on the creator’s device and travels inside the invite link (in the URL fragment, which never reaches the server).
  • Admins can require E2EE workspace-wide from Settings → Company.
  • Because the server can’t read the media, cloud recording and AI recap are automatically disabled while E2EE is on. Local recording still works (it captures on the participant’s own device).

Transport is always TLS — E2EE adds a second layer on top for the media itself.

Audit & activity logging

Two complementary logs:

  • Moderation audit — admit/deny, host transfer, kicks (with the lobby revocation that a kick must perform), and other room-level actions.
  • Activity / system events — joins, recording lifecycle, lobby timing and errors.

Audit logs are host/invitee scoped and cross-company gated. They can optionally be exposed on a shared recording.

Access control

  • Role-based access across the workspace (owner / admin / member), with super-admin and platform-owner roles for operators — see Administration.
  • Removing a participant revokes their lobby admission, so they can’t re-enter with the back button.
  • SSO / SAML is available on Enterprise.