Overview

Siesta AI was built from the ground up by an experienced team with security, privacy, and compliance prioritized from day one. We follow modern security principles - including the zero trust security model, strong authentication practices, the principle of least privilege, and a shift-left approach that incorporates security into our design, development, and ops.

Compliance

GDPR
ISO 27001
SOC 2

Policies

Information Security Policy
Data Management Policy
Technical Vulnerability Management Policy
Incident Response Policy
Secure Development Policy

View More

FAQs

See answers to common trust questions.

View More

Controls

Infrastructure security

Unique production database authentication
Account authentication enforced
Production data segmented

View More

Organizational security

Employee background checks
Code of Conduct acknowledged by contractors
Portable media encrypted

View More

Product security

Penetration testing performed
Data transmission encrypted

View More

Internal security procedures

Continuity and disaster recovery plans established
Cybersecurity insurance maintained

View More

Subprocessors

Microsoft Azure

Cloud provider
Open AI

Generative AI Provider
Slack

Communication and collaboration