Enterprise-grade security and compliance for contact centers

We protect your customer data with industry-leading encryption, rigorous controls, and independently audited certifications.

Request SOC 2 Report

Certified Secure & Compliant

Last audited: November 2024

We meet or exceed leading security and compliance standards:

SOC 2 Type II

SOC 2 Type II

Audited for security, availability, and confidentiality.

HIPAA

HIPAA

Meets requirements for handling protected health information.

PCI DSS

PCI DSS

Secure handling of payment card data.

GDPR Ready

GDPR Ready

Privacy by design for EU data protection.

Security Program

Data Security

  • Hosted on AWS with multi-zone redundancy and availability.
  • Logical tenant separation to prevent cross-contamination.
  • TLS 1.2+ encryption in transit.
  • AES-256 encryption at rest.

Application Security

  • Continuous monitoring and threat detection.
  • DDoS protection to maintain service availability.
  • Regular vulnerability scanning and third-party penetration testing.

Organizational Security

  • Mandatory security training for all employees.
  • 24/7 monitoring and incident response.
  • Vendor risk assessments and ongoing audits.

Compliance & Privacy

  • SOC 2 Type II Certified.
  • HIPAA.
  • PCI DSS compliant for payment data.
  • GDPR principles observed for all EU customer data.
  • Regular external audits to validate controls.

Commitment to Security

Security is built into how we design, build, and run MosaicVoice.

Audit Report Access

SOC 2 Type II Report

Our SOC 2 Type II audit report is available upon request.

Have a security concern? Report it here or email security@mosaicvoice.ai