Our global standards and certifications for data security and privacy.
PolyAI is committed to meeting global standards for data security and privacy and ensuring our voice agents comply with global governmental and industry
frameworks.Below is an overview of the certifications and standards we adhere to and how they support our clients’ compliance programs.
PolyAI has achieved SOC 2 Type II compliance, ensuring robust controls for data security, availability, processing
integrity, confidentiality, and privacy.
Where relevant, our systems are designed to meet HIPAA (Health Insurance Portability and Accountability Act) requirements, ensuring that
protected health information (PHI) is handled securely.
We are certified under the UK NCSC (National Cyber Security Centre)Cyber Essentials and Cyber Essentials Plus frameworks, which protect against a wide variety of cyber threats.
PolyAI complies with the General Data Protection Regulation (GDPR) to protect personal data and ensure privacy for individuals within
the European Union. This includes:
Transparent data processing practices.
Secure handling of personal and sensitive information.
Robust measures to prevent data breaches.
Providing individuals with control over their personal data, including access and deletion requests.