Security and compliance.

Enterprise-grade security built for regulated industries.

Certifications

SOC 2 Type II

Annual audit of security controls, availability, and confidentiality. Report available under NDA.

HIPAA

Full compliance for protected health information. BAA available for healthcare customers.

GDPR

EU data protection compliance. Data processing agreements and residency options available.

Data handling

  • AES-256 encryption at rest for all stored data
  • TLS 1.3 encryption in transit for all connections
  • Data residency options for US, EU, and APAC regions
  • Automated data retention policies with configurable durations
  • Regular third-party penetration testing

Access control

  • SSO / SAML 2.0 integration with all major identity providers
  • Role-based access control (RBAC) with granular permissions
  • Complete audit logging of all administrative actions
  • Multi-factor authentication (MFA) enforcement
  • Session management with configurable timeout policies

Responsible AI practices

  • No training on customer data -- your content stays yours
  • All AI responses verified against your source documents
  • Configurable guardrails for domain-specific accuracy requirements
  • Transparent model versioning and change documentation
  • Human-in-the-loop review options for high-stakes content

Questions about security?

Our team can walk through your specific security and compliance requirements.

Contact us