You are here:
Einstein Activity Capture Security
To protect your data and remain compliant, review the security features of Einstein Activity Capture. Security features include access and authentication, network access configuration, Exchange Web Services and Microsoft Graph API usage, data flow, storage, encryption, privacy, and retention policies.
Required Editions
| Available in: Lightning Experience |
| Available with Einstein Activity Capture Standard in Sales in Starter, Pro Suite, Professional, and Enterprise Editions |
| Available with Unlimited Edition, Einstein 1 Sales Edition, and Agentforce 1 Edition |
| Available with Einstein for Sales, which is included in Einstein 1 Sales Edition and available for an extra cost in Enterprise and Unlimited Editions |
| Available with Sales Engagement, which is included with Sales in Performance and Unlimited Editions, and available for an extra cost in Professional and Enterprise Editions |
| Available with Revenue Intelligence, which is available for an extra cost in Enterprise and Unlimited Editions |
Note We’re reorganizing the Einstein Activity Capture documentation. We’re
moving some information around, but we aren’t deleting anything.
- Public Cloud Infrastructure
Amazon Web Services (AWS) infrastructure is separate from the main Salesforce instance that powers Einstein Activity Capture services. This AWS infrastructure, called Activity Platform Hyperforce infrastructure, is the next-generation Salesforce infrastructure architecture for public cloud, where Salesforce services run. - Data Storage and Usage
When a Google or Microsoft account connects, Einstein Activity Capture captures and stores an initial amount of historical data on Activity Platform Hyperforce infrastructure. - Data Retention and Deletion
Find out what data Einstein Activity Capture stores, how much is stored, and how long it’s retained. - Org Provisioning
When you turn on Einstein Activity Capture, Salesforce creates a corresponding Einstein Activity Capture service on the Activity Platform Hyperforce infrastructure. - Authentication and Data Flow
Einstein Activity Capture uses secure authentication and data flow to protect sensitive data, such as emails, calendar events, and contacts. - Network Connection
When setting up Einstein Activity Capture with a Microsoft Exchange on-premises server (2019, 2016, or 2013) or Microsoft Office 365, make sure that you allow the necessary network access. - Exchange Web Services (EWS)
To access emails, events, and contacts from Exchange, Salesforce makes these calls via Exchange Web Services (EWS). - Microsoft Graph API
Starting Spring ’26, Einstein Activity Capture configured to use Microsoft Office 365 is automatically authenticated by using Microsoft Graph. Microsoft is retiring Exchange Web Services (EWS) in October 2026 for Microsoft Office 365, and Microsoft Graph API replaces EWS as a more advanced, secure, and scalable solution. Microsoft Graph exposes REST APIs and client libraries to access data on Microsoft Office 365. - Compliance
Salesforce compliance standards apply to Einstein Activity Capture data stored on the Activity Platform Hyperforce infrastructure. Einstein Activity Capture data adheres to the same compliance standards as other Salesforce services. - Encryption
In Einstein Activity Capture, encryption means a layered approach to data protection. - Data Privacy
Einstein Activity Capture includes several ways for users to sync, store, and share data, as required.
Did this article solve your issue?
Let us know so we can improve!
