Your data security is our priority
We implement industry-leading security practices to protect your customer data and ensure compliance with global standards.
- TLS 1.3 for all data in transit
- AES-256 encryption at rest
- Encrypted database backups
- Secure key management (AWS KMS)
- Hosted on AWS with SOC 2 compliance
- Multi-region redundancy
- Automatic failover and recovery
- DDoS protection via Cloudflare
- Role-based access control (RBAC)
- SSO/SAML support (Enterprise)
- Two-factor authentication
- Session management and timeouts
- Complete tenant data isolation
- Separate encryption keys per tenant
- No cross-tenant data access
- Isolated vector embeddings
- 24/7 security monitoring
- Comprehensive audit logs
- Anomaly detection alerts
- Log retention for compliance
- Documented incident response plan
- 72-hour breach notification
- Regular security drills
- Post-incident reviews
AI Security & Privacy
Our AI features are designed with privacy and security in mind.
Data Processing
AI features process only the minimum data necessary. Ticket content is sent to OpenAI for processing but is not used to train their models under our enterprise agreement.
No Training on Your Data
Your data is never used to train AI models. We have data processing agreements with OpenAI that explicitly prohibit using your content for model training.
Transparent Usage
You have full visibility into AI usage in your dashboard. You can see exactly how AI features are being used and control which features are enabled.
Human Oversight
AI generates suggestions, but humans approve all customer-facing content. Agents review and edit AI drafts before sending responses.
Compliance & Certifications
We maintain compliance with major security and privacy frameworks.
Type II Certified
Fully Compliant
Compliant
27001 Aligned