Skorpion AI
Skorpion AI

Security

Security is fundamental to everything we do at Skorpion AI. We employ industry-leading security practices to protect your data and ensure the integrity of our platform.

Data Encryption

Encryption in Transit

All data transmitted between your devices and our servers is encrypted using TLS 1.3, the latest and most secure encryption protocol.

Encryption at Rest

All stored data, including call recordings, transcripts, and customer information, is encrypted using AES-256 encryption.

Access Controls

Authentication

We use industry-standard authentication mechanisms, including multi-factor authentication (MFA) support, to ensure only authorized users can access your account.

Role-Based Access Control

Granular permissions and role-based access controls ensure users only have access to the data and features they need for their role.

Infrastructure Security

  • Cloud Infrastructure: Hosted on enterprise-grade cloud platforms with SOC 2 Type II compliance
  • Network Security: Firewalls, DDoS protection, and intrusion detection systems
  • Regular Updates: Automated security patches and updates to all systems
  • Monitoring: 24/7 security monitoring and threat detection
  • Backup & Recovery: Regular automated backups with tested disaster recovery procedures

Application Security

  • Secure Development: Security-first development practices and code reviews
  • Vulnerability Testing: Regular penetration testing and security audits
  • API Security: Secure API endpoints with rate limiting and authentication
  • Input Validation: Comprehensive input validation and sanitization
  • Dependency Management: Regular updates to dependencies to address security vulnerabilities

Data Protection

Data Minimization

We only collect and store the data necessary to provide our services effectively.

  • Data Retention: Configurable data retention policies aligned with your business needs and legal requirements
  • Data Deletion: Secure data deletion processes when data is no longer needed
  • Data Isolation: Customer data is logically separated and isolated
  • Backup Security: Encrypted backups stored in secure, geographically distributed locations

Compliance & Certifications

We maintain compliance with industry standards and regulations:

  • SOC 2 Type II (in progress)
  • GDPR compliance
  • CCPA compliance
  • HIPAA considerations for healthcare use cases

Incident Response

We have a comprehensive incident response plan in place to quickly identify, contain, and remediate any security incidents. In the event of a security incident that affects your data, we will notify you promptly in accordance with applicable laws and regulations.

Your Security Responsibilities

While we handle security at the platform level, you also play a crucial role:

  • Use strong, unique passwords for your account
  • Enable multi-factor authentication when available
  • Keep your account credentials confidential
  • Regularly review and manage user access permissions
  • Report any suspected security issues immediately
  • Follow security best practices for your organization

Security Reporting

If you discover a security vulnerability, please report it to us responsibly. We take security vulnerabilities seriously and will work with you to address them promptly.

Security Contact: security@skorpion.ai

Please do not publicly disclose vulnerabilities until we have had a chance to address them.

Questions About Security

If you have questions about our security practices or need additional information, please contact us:

  • Email: security@skorpion.ai
  • Address: Skorpion AI, San Francisco Bay Area, CA, USA