Security at Divinci AI

Last Updated: May 2, 2025

At Divinci AI, security is not just a feature—it's a fundamental principle that guides everything we do. We understand that when you choose our platform for your AI needs, you're entrusting us with sensitive information. We take this responsibility seriously and have implemented comprehensive security measures to protect your data.

Data Protection

Your data is encrypted at rest and in transit using industry-standard encryption protocols. We implement multiple layers of encryption to ensure that your information remains secure at all times.

Our Data Protection Practices:

  • AES-256 encryption for data at rest
  • TLS 1.3 for all data in transit
  • Strict access controls based on the principle of least privilege
  • Regular security audits and penetration testing
  • Automated vulnerability scanning
  • Secure backup procedures with encryption

Access Control

We implement stringent access controls to ensure that only authorized personnel can access your data. Our systems are designed with the principle of least privilege, meaning employees only have access to the specific data they need to perform their job functions.

Our Access Control Measures:

  • Multi-factor authentication (MFA) required for all staff
  • Role-based access control (RBAC)
  • Just-in-time access provisioning
  • Comprehensive audit logging of all access events
  • Regular access reviews and privilege reconciliation
  • Automated account deprovisioning when employees leave

Infrastructure Security

Our infrastructure is built on secure, enterprise-grade cloud platforms with redundant systems and continuous monitoring. We implement defense-in-depth strategies to protect against various types of threats.

Our Infrastructure Security Measures:

  • Secure cloud infrastructure with geo-redundancy
  • Network segmentation and firewalls
  • DDoS protection
  • 24/7 monitoring and alerting
  • Regular patching and vulnerability management
  • Disaster recovery and business continuity planning

Compliance

We adhere to industry standards and regulatory requirements to ensure that our security practices meet or exceed expectations. Our compliance program is regularly reviewed and updated to address new regulations.

Certifications and Compliance:

SOC 2 Type II

Security, Availability, Confidentiality

GDPR Compliant

EU Data Protection

ISO 27001

Information Security Management

HIPAA Compliant

For Healthcare Customers

AI-Specific Security

We have implemented specialized security measures specifically designed for AI systems and data processing. These include safeguards against prompt injection, model poisoning, and data extraction attacks.

Our AI Security Measures:

  • Prompt sanitization and validation
  • Model monitoring for unusual behavior
  • Training data security and validation
  • Regular model security reviews
  • Output filtering and content safety measures
  • Secure model deployment pipelines

Security Whitepaper

For a comprehensive overview of our security practices, download our security whitepaper. This document provides detailed information about our approach to security, privacy, and compliance.

Download Security Whitepaper

Security Contact Information

If you have any security concerns or would like to report a vulnerability, please contact our security team using the information below.

Email
[email protected]
Bug Bounty
HackerOne Program
PGP Key
View PGP Key