Our compliance with data protection regulations (GDPR, CCPA, HIPAA, etc)
Keymate service is not intended to store large amounts of sensitive data. However, we are still compliant with relevant data protection regulations based on the way we store and process information.
To protect any personal data that is stored and processed, we use the standard measures used by OpenAI.
Data protection compliance of our partners
We store your data as embeddings encrypted with the OAuth protocol using enterprise level Pinecone.io db on Azure and AWS.
Both Pinecone and AWS are HIPAA compliant.
We utilize the most secure tier of Pinecone and their data safeguards are SOC2 Type II certified. (Learn more about Pinecone security protocols)
Our cloud service provider Amazon Web Services (AWS) regularly undergoes independent verification of security, privacy, and compliance controls against the following standards: ISO/IEC 27001, ISO/IEC 27017, SOC 1, SOC 2, SOC 3, PCI DSS, HIPAA, CSA Star, FedRAMP, and many others. (Learn more about AWS security protocols)
β
We manage the data in a way that we could achieve certification against a number of different standards, but at this stage in our development we have not been formally certified.
Have you undergone any third-party security audits?
At this stage of our growth, we have not yet formally delivered an external security audit. We do have a security and audit expert working with us to ensure we build and manage the platform in such a way as to be able to pass any rigorous audits as needed.
At Keymate.AI, we take privacy and security very seriously. It has been our principle vision from the start to make this our primary priority.