ZautoAI Logo
Trust & Security

ZautoAI Trust Center

Everything your security, privacy, and compliance teams need to evaluate ZautoAI. Updated quarterly with fresh audit artefacts and operational metrics.

Current Posture

  • ZautoAI is not yet independently certified (e.g., SOC 2/ISO/HIPAA).
  • Deploys on AWS, Azure, or Google Cloud using HIPAA‑eligible services.
  • We follow security best practices and provide artefacts on request.

Data Residency & Retention

  • Primary VPCs: AWS ap-south-1 (Mumbai) & eu-central-1 (Frankfurt).
  • Optional dedicated VPC or on-prem deployment with BYOK/HSM.
  • Retention defaults: 90 days (audio), 365 days (structured data). Configurable per BAA.
  • Deletion SLA: <24 hours with logged attestation.

Security Operations

  • 24x7 SOC with Splunk SIEM + automated SOAR playbooks.
  • Role-based access, JIT elevation, quarterly access reviews.
  • Incident response: P1 within 30 minutes, customer notice within 2 hours.
  • Quarterly DR drills, RTO 1 hour / RPO 15 minutes (SaaS), 30m/5m (Private VPC).

Sub-Processor Inventory

  • AWS (Compute, Storage) — ap-south-1, eu-central-1.
  • Snowflake (Analytics Warehouse) — optional, customer scoped.
  • Twilio (Messaging) — used only when WhatsApp/SMS channels enabled.
  • Microsoft Azure (Speech services) — optional, private endpoint.
  • No data shared with training partners; models hosted within ZautoAI VPC.

Legal & Policy Artefacts

  • Mutual NDA, BAA, and DPA templates with tracked-change history.
  • Security policy suite: Access control, change management, incident response.
  • Business continuity plan with quarterly metrics and audit evidence.
  • Vendor risk assessments and penetration test summaries on request.

Proof Pack Downloads

Request secure access to the following documents. All downloads are watermarked and expire in 7 days.

  • SOC 2 Type II report (redacted) & bridge letter.
  • Penetration test executive summary & remediation status.
  • Data flow diagrams (documentation automation, prescription automation, revenue integrity).
  • Support SLA scorecard and incident response playbook.

Contact the Trust Team

Email trust@zauto.ai for security questionnaires, penetration testing evidence, or to schedule a technical review with our CISO.

Take the Next Step

Security & Compliance Built-In, Not Bolted-On

Get the audit artefacts, sub-processor transparency, and compliance documentation your InfoSec and legal teams need to approve fast.

Download Security Pack

SOC 2 Type II roadmap, penetration test reports, and BAA/DPA templates. Dedicated InfoSec liaison included.

ZautoAI © 2023–2025

About Privacy Policy Trust Center Terms of Use