At Humata, the security and data privacy of our customers' data is a top priority. Our ever-expanding security program is based on the principles of Privacy by Design and across industry standards spanning multiple domains.
Document data is not used to train our model. All data to and from our model is permanently deleted after 30 days. Data in your Humata dashboard is retained and accessible until otherwise requested.
All customer data is end-to-end encrypted at REST with AES-256 and in transit via TLS.Sensitive information like access tokens and keys are encrypted at the application level before they are stored in the database.
Humata uses Stripe
to process payments and does not store personal credit card information for any of our customers.Stripe is a certified PCI Service Provider Level 1, which is the highest level of certification in the payments industry.
Vulnerability Management 🔒
Humata works with industry experts to conduct regular penetration tests.
Backups 🌐 🔑
All customer databases are backed up every day.