Security

Espresso AI was designed and built from the ground up with your data's security in mind. We use industry-leading security and privacy standards to keep your data secure.

As evidence of this, we have obtained our SOC 2 Type II certification (report available on request) . We are also HIPAA and GDPR compliant.

Access Controls
Espresso uses AuthZero and Okta and supports access through SSO.

What data does Espresso store?
First and foremost, we never access, log, or store any data from Snowflake - we use only metadata for model training and reporting. Metadata is always encrypted in transit and at rest.
‍
Some of our advanced features come into contact with data in transit. This data is always encrypted in transit, and never leaves ephemeral memory.

Deployment Options
Enterprise users with specific regulatory or privacy needs can opt into a single-tenant deployment over PrivateLink, further guaranteeing the security of all data and metadata.


Do you have additonal questions? Reach out to us at security@espresso.ai.