We’re SOC 2 Type 2 compliant.
Request reports here.
Penetration test completed
on 10-08-2024.
Performed a SOC 2 Type 2
examination.
Client data processed through BizAI is never retained or used for training. Fisent ensures this policy applies to our own APIs and with our enterprise agreements with any third party model hosts.
All data at rest is secured using AES-256 encryption, with data in transit is encrypted using HTTPS (TLS 1.2/1.3).
Our GenAI Efficacy Framework (GEF) allows clients to track output accuracy and ensure internal standards are met prior to and following deployment.
All our employees receive routine security awareness training, creating a culture of security consciousness.
Fisent employs a strict policy of least-privilege access to systems and data, which includes the use of strong MFA. BizAI’s codebase leverages infrastructure-as-code to ensure fine-grained permissions are granted to services and components defined within the architecture. Network activity and system access is continuously monitored with alarms to alert on suspicious events.
Fisent’s compliance partners conduct regular security audits and penetration tests to identify and address any vulnerabilities.
Through Fisent’s partnership with Vanta, security controls are monitored in real-time and adapt as compliance frameworks evolve. Fisent’s Trust Center enables customers a real-time view of controls, and a central place to view all compliance documentation.