Compliance & Certifications
Our commitment to regulatory compliance and industry standards
Compliance & Certifications
Meeting the highest standards for data protection, privacy, and regulatory compliance
π SOC 2 Type II
Status: Certified
Audit Date: October 2024
Scope: Security, Availability, Processing Integrity, Confidentiality, Privacy
πͺπΊ GDPR
Status: Compliant
DPA Available: Yes
Data Processing: EU/EEA only option available
πΊπΈ CCPA
Status: Compliant
Consumer Rights: Fully supported
Data Sales: We do not sell personal data
π₯ HIPAA
Status: BAA Available
PHI Processing: Compliant infrastructure
Healthcare Focus: Medical entity extraction
Industry Standards
π ISO 27001
Status: In Progress
Expected: Q2 2025
Information security management systems certification for comprehensive security controls.
π ISO 27018
Status: Planned
Expected: Q3 2025
Code of practice for protection of personally identifiable information (PII) in public cloud computing.
π¦ FedRAMP
Status: Under Evaluation
Level: Moderate
Federal Risk and Authorization Management Program for government customers.
π‘οΈ PCI DSS
Status: Not Applicable
Reason: No payment card data processing
Payment processing handled by certified third-party providers.
Data Governance
π Data Residency
Choose where your data is processed and stored with options for US, EU, and other regions to meet local requirements.
β° Data Retention
Configurable data retention periods with automatic deletion. Default 24-hour deletion for document content.
π Data Lineage
Complete audit trail of data processing activities with detailed logs for compliance reporting and investigations.
π Data Processing Records
Comprehensive records of processing activities (ROPA) maintained for GDPR Article 30 compliance.
π― Purpose Limitation
Data is processed only for the specific purposes outlined in our privacy policy and service agreements.
π Data Minimization
We collect and process only the minimum data necessary to provide our services effectively.
Compliance Support
π Documentation
Comprehensive compliance documentation including security questionnaires, audit reports, and certification letters.
π€ Legal Agreements
Data Processing Agreements (DPA), Business Associate Agreements (BAA), and custom contract terms available.
π Compliance Reporting
Regular compliance reports, audit results, and certification updates to keep you informed of our compliance status.