Security & Compliance

Trusted by regulated brand teams in 40+ countries.

Our security program is independently audited and continuously monitored. Request our full pack from the trust portal.

SOC 2 Type IIISO 27001:2022GDPRCCPADPDPHIPAA Ready

SOC 2 Type II, ISO 27001:2022, GDPR, CCPA and DPDP aligned by default.

TLS 1.3 in transit, AES-256 at rest. Customer-managed keys on Enterprise.

EU, US, IN and SG regions. Pinned per-workspace, never replicated cross-region.

RBAC, SAML SSO, SCIM provisioning and granular per-resource permissions.

Immutable audit log with streaming export to SIEM via OCSF connectors.

Prompt logging, confidence scores, brand-safety rule enforcement and PII redaction.