Data Security

Cloud platform
and Logs

All data is hosted in GCP in the USA region and leverages server-side encryption provided by Google Cloud Platform. All incoming requests to systems are authenticated and validated at the time of authentication.

Google Cloud provides an extensive list of compliance and regulatory assurances, including SOC 3, and ISO 27001. See Google’s compliance and security documents for more detailed information. Further, all access is logged and audited regularly. Logs are maintained for a minimum of 3 months, and hosted on GCP whilst encrypted at rest

End to End

All data on the platform is encrypted, and all connections are secured using 2048 bit AES encryption. Over the wire, data is encrypted using RSA 2048 bit keys. At rest, data is encrypted using AES-256.

No audio

By default, we do not store audio recordings. In cases where storing is required, audio recordings are securely stored and encrypted at rest using 2048 bit RSA.