Trust Center

Security & Compliance at Vigilense AI

Transparency, security, and compliance are foundational to everything we build. Explore our certifications, architecture, and commitments.

Certifications & Compliance

[+]

SOC 2 Type II

In Progress

Independently audited for security, availability, processing integrity, confidentiality, and privacy controls.

Request Report →

[+]

ISO 27001

In Progress

Information security management system aligned with ISO 27001 international standards.

Learn More →

[+]

GDPR

In Progress

Full compliance with the General Data Protection Regulation for EU data subjects.

[+]

CCPA

In Progress

California Consumer Privacy Act compliance for California residents.

[+]

HIPAA

In Progress

Self-hosted deployment option enables HIPAA-compliant security operations for healthcare organizations.

Learn More →

[+]

FedRAMP

In Progress

Working toward FedRAMP authorization for federal government deployments.

Security Architecture

Our architecture is designed with security-first principles, giving you complete control over your data.

[+]

BYODb Architecture

Bring Your Own Database means your security data never leaves your infrastructure.

Query your databases in real-time
Process in memory no data stored
Support for 20+ database types
Zero data replication required

[+]

Tenant Separation

Complete isolation between customers in our multi-tenant SaaS environment.

Cryptographic isolation per tenant
Dedicated encryption keys via KMS
Network-level access controls
Isolated processing environments

[+]

Encryption

Industry-standard encryption for all data, everywhere.

TLS 1.3 for data in transit
AES-256 for data at rest
HSM-backed key management
Per-tenant encryption keys

Deployment Security

SaaS Cloud

Fully managed with enterprise-grade security

Infrastructure	AWS / Azure (SOC 2, ISO 27001)
Tenant Isolation	Cryptographic + Logical
Data Residency	US, EU, APAC regions available
Encryption	TLS 1.3 + AES-256
Access Control	SSO, MFA, RBAC
Audit Logging	Complete + Exportable
Penetration Testing	Annual third-party
Uptime SLA	99.9%

Security Practices

Secure Development

OWASP guidelines
Mandatory code reviews
Automated SAST/DAST
Dependency scanning

Infrastructure

Zero-trust architecture
Network segmentation
IDS/IPS monitoring
DDoS protection

Access Control

Least privilege principle
MFA required
Regular access reviews
Automated deprovisioning

Monitoring

24/7 security monitoring
Real-time alerting
Incident response team
Regular threat hunting

Testing

Annual penetration tests
Continuous vuln scanning
Bug bounty program
Red team exercises

Personnel

Background checks
Security training
Confidentiality agreements
Separation of duties

Security Documentation

Enterprise customers can request access to detailed security documentation:

📄 SOC 2 Type II Report

📄 Penetration Test Executive Summary

📄 Architecture & Data Flow Diagrams

📄 Security Questionnaire Responses (SIG, CAIQ)

📄 Data Processing Agreement (DPA)

📄 Vendor Risk Assessment Package

Request Documentation

Security Contact

Have a security question or need to report a vulnerability?

Security Inquiries

security@vigilense.ai

Vulnerability Reports

security@vigilense.ai PGP key available upon request

Response Time

We acknowledge all security reports within 24 hours