Security & Compliance
Built for regulated industries
When the AI infrastructure layer becomes a system of record, security stops being a checkbox. Here's our posture.
SOC 2 Type II
In progress · Q4 2026
GDPR
Compliant
CCPA
Compliant
ISO 27001
Roadmap · 2027
Encryption
TLS 1.3 in transit. AES-256 at rest. KMS-managed keys with quarterly rotation.
Tenant isolation
Logical row-level isolation enforced by RLS. Optional dedicated database on Enterprise plans.
Access control
SSO via SAML 2.0 / OIDC. SCIM provisioning. Role-based access with audit trail.
Vulnerability management
Continuous dependency scanning. Quarterly third-party penetration tests. Bug bounty program.
Incident response
24/7 on-call. Documented IR playbook. Customer notification SLA: < 24 hours for confirmed incidents.
Data residency
EU and US regions available. Enterprise: choose primary region; data does not cross regional boundary.
Backups & DR
Point-in-time recovery, 35-day retention. RPO < 1 hour, RTO < 4 hours.
Subprocessors
Full list published and notified 30 days before changes. Customer veto rights on Enterprise.
Request our security questionnaire, SIG, or trust packet at security@salesmarketing.ai
One last thing
If AI doesn't recommend you, your business is already invisible.
Find out where you stand in 30 seconds. Free. No credit card.