SECURITY

Built with security in mind

Encord is HIPAA and SOC 2 compliant and has Role-Based Access Control which enables effective user management and maintains appropriate data privacy levels across multiple AI data projects.
Image Monet

AICPA SOC 2 Certified

Encord has successfully completed its Systems and Organizational Control (SOC)-2 Examination. In doing so Encord maintains its adherence to one of the most stringent, industry-accepted compliance frameworks for service organizations and provides additional assurance to its clients, through an independent auditor (Dansa D'Arata Soucia LLP), that its business process, information technology and risk management controls are properly designed.

mobile_asset

HIPAA Certified

Encord utilizes enterprise-grade best practices to protect our customers' sensitive health information and uses Drata to verify its security, privacy, and HIPAA compliance controls. Drata's HIPAA product provides an automated approach to ensuring that organizations can demonstrate compliance.

mobile_asset

Continuous Security Control Monitoring

Encord uses Drata's automation platform to continuously monitor security controls across the organization. Automated alerts and evidence collection allow Encord to confidently prove its commitment to protecting your sensitive health information while fostering a security-first mindset and culture of compliance across the organization.

mobile_asset
img
Employee training
img
Secure software development
img
Data encryption

VULNERABILITY DISCLOSURE PROGRAM

If you believe you've discovered a bug in Encord's security, please get in touch at security@encord.com. Our security team promptly investigates all reported issues.