Skip to main content
GrowthPath AI

Your data. Our responsibility.

Security, compliance, and responsible AI aren't afterthoughts — they're built into every layer of GrowthPath AI.

Security practices

How we protect your organization's data.

Tenant isolation

Every organization's data is logically isolated. No cross-tenant data access.

Encryption

Data encrypted at rest (AES-256) and in transit (TLS 1.2+). API tokens are hashed.

Role-based access

Granular permissions by role. Admins control who sees what.

Audit trails

Every action is logged. Complete audit history for compliance.

SSO support

Single sign-on integration for enterprise identity management.

Regular backups

Automated daily backups with point-in-time recovery.

Compliance readiness

Building toward formal certifications.

In Progress

SOC 2 Type II

Working toward SOC 2 Type II certification. Current practices align with Trust Service Criteria.

Active

GDPR practices

Data processing agreements available. Right to deletion supported. Data portability on request.

Active

Data retention policies

Configurable retention periods. Automatic data purge on account closure. Clear retention schedules.

Infrastructure

Built on reliable, scalable infrastructure.

Hosting
Cloud-hosted with auto-scaling
CDN
Global content delivery
Uptime target
99.9% availability
Monitoring
24/7 automated monitoring and alerting

AI data handling

How AI processes your data — and what we don't do.

AI processes data only when you initiate an action (e.g., drafting a review)
Data sent to AI providers (Anthropic) is not used to train their models
AI outputs are stored alongside your data with the same security controls
No employee data is shared between organizations
AI-processed data follows the same retention policies as all other data
Responsible AI

AI assists, humans decide

Every AI output is a draft. Managers review, edit, and approve before anything becomes official. Bias detection runs on every review draft by default. AI enhances human judgment — it never replaces it.

Questions about security?

We're happy to answer questions about our security practices, compliance posture, or data handling.

security@growthpath.work