SOC 2 Type II Compliance

Security and compliance are fundamental to how we build and maintain InnossistAI. Our systems are audited annually by independent third-party certified public accountants (CPAs) to verify our alignment with the SOC 2 Type II Trust Services Criteria established by the American Institute of Certified Public Accountants (AICPA).

Our Trust Services Criteria Focus

Our annual audit evaluates the design and operating effectiveness of our controls across these key areas:

• Security (Common Criteria): We enforce multi-factor authentication (MFA), vulnerability management, continuous logging, and intrusion detection to guard against unauthorized access.
• Availability: We operate a highly available, multi-zone hosting infrastructure with automated backups and disaster recovery protocols to ensure platform access is consistent.
• Confidentiality: Customer prompt designs, databases credentials, and custom model assets are restricted to authorized personnel and protected under strict confidentiality guidelines.
• Processing Integrity: We ensure that every AI workflow compiles and executes accurately, with transparent logs that verify execution states and API payloads.