Enterprise-Grade Security and Compliance
A platform you can trust.
Security isn’t just a priority. It is an essential component to People.ai’s technology and how we ensure your data is safe—and has been since day one. People.ai was built from the ground up with enterprise security in mind. Our customers entrust sensitive data to our care and it’s our mission to keep it secure.
People.ai continues to invest in our security, including adhering to the requirements of the the Cloud Security Alliance, and completing our SOC 2 certification. Our SOC 2 certification is an independent third-party validation that we have the right controls in place and are doing everything we can to ensure the security of your data. Additionally, People.ai is GDPR compliant by design.
Applications & Internal Processes:
We’ve developed an internal process to keep your data secure. We rely on AWS physical protection of data centers. People.ai does not have any on-premise systems to protect or operate. Only authorized employees have access to our production infrastructure, and passwords are strictly regulated.
We employ secure coding practices, code reviews, automated static code analysis and vulnerability testing to cover the OWASP Top 10 and other vulnerabilities. We also do quarterly independent penetration testing to ensure our code and infrastructure is secure.
All user credentials are securely encrypted using one way encryption, passwords are never stored in plain text. All data access is protected by a role-based access-control mechanisms, which only lets users view data for which they have permission.
People.ai’s computing infrastructure is provided by Amazon Web Services, a secure cloud services platform. Amazon’s physical infrastructure has been accredited under ISO 27001, SOC 1/SOC 2/SSAE 16/ISAE 3402, PCI Level 1, FISMA Moderate, and Sarbanes-Oxley.