Engineered for the customers regulators actually inspect.
SOC 2 Type II. HIPAA. ISO 42001. Per-tenant isolation at compute, data and model layer. Immutable audit trail you can hand to your auditor.
SOC 2 Type II
Annual audit; report available under MNDA. Continuous monitoring via Vanta.
HIPAA
BAA available. PHI handling, encryption-at-rest, redaction at ingress.
ISO 42001
AI Management System certified. EU AI Act conformity tracking.
FedRAMP Moderate
Authorization in progress; sponsoring agency engaged.
GDPR & DPA
EU SCCs, AI Addendum, data residency in eu-west-1.
PCI-DSS Level 1
For workflows touching cardholder data; tokenization via Stripe.
Tenant isolation at every layer of the stack.
Compute
Each customer's agents run in dedicated Chromium sandboxes with isolated cookies, storage and network egress allowlists. Schema-per-tenant on Postgres for top tier; row-level for mid-tier.
Keys
Per-customer KMS keys with automatic rotation. BYOK via AWS KMS, GCP KMS, or HashiCorp Vault. Customer-managed encryption keys available at Enterprise.
Network
Per-tenant egress allowlists. Optional private link to your VPC. No outbound to the public internet from production agents unless explicitly allowed.
Models
Customer data is never used to train shared models without explicit, contractual opt-in. Enterprise customers can disable trace retention entirely.
PII handling
Presidio + custom redactors run at ingress. PHI tokenized before reaching base models. Output validators block leakage.
Audit
Immutable append-only audit log. Replayable traces. Stream to Splunk, Datadog, S3 or your SIEM of choice.
Pen-test, bug bounty, incident response — all the table-stakes a CISO needs.
Annual pen-test
By an independent firm. Summary available under MNDA.
Bug bounty
Public program via HackerOne. Coordinated disclosure policy.
Incident response
24×7 on-call. SLA: customer notification within 24h of confirmed incident.
Vendor management
Quarterly subprocessor review. Public list on the trust center.