Security at Engage AI

AI & Data Privacy

Engage AI is built to ensure your proprietary data remains yours. We adhere to strict data boundaries when interacting with Large Language Models (LLMs).

• Zero Retention for Inference: By default, we use model providers with zero-retention agreements for inference. Your customer support data is not used to train our public models or the models of our providers (e.g., OpenAI, Anthropic).
• Data Isolation: Each customer's knowledge base and conversation history are logically isolated.
• PII Redaction: We offer tools to automatically redact sensitive Personally Identifiable Information (PII) before it leaves our secure boundary.

Infrastructure Security

Our infrastructure is hosted on world-class cloud providers (AWS and Vercel) with robust physical and network security.

• Encryption at Rest: All databases and storage volumes are encrypted using AES-256 industry standards.
• Encryption in Transit: Internal and external data transmission is protected via TLS 1.2+.
• Network Segregation: Services run in private networks; public access is restricted to load balancers and specific API gateways.

Application Security

We implement rigorous security controls within the Engage AI platform to prevent unauthorized access.

Compliance & Certifications

We are committed to maintaining compliance with global standards.

• SOC 2: We maintain SOC 2 Type II alignment in our controls and processes (Audit report available upon NDA for Enterprise).
• GDPR: We provide full support for Data Subject Access Requests (DSAR) and deletion requests to help you meet GDPR obligations.

Vulnerability Disclosure

We value the contributions of the security research community. If you discover a vulnerability, please report it to us responsibly.

Send details to security@andengage.com. We aim to acknowledge reports within 48 hours and will provide status updates as we investigate and resolve valid issues.