Below is a high level description of our security, compliance, and privacy standards.
To monitor the real-time status of our cloud infrastructure, endpoints, corporate procedures, enterprise risk, and employee accounts, visit https://trust.deepdesk.com/.
We use Google Cloud to support the deployment and management of our technology. You can read more about Google Cloud's security principles here: https://cloud.google.com/security/transparency. We also perform yearly penetration tests with trusted partners.The last pentest was performed in June 2022 by Fox-IT, a global cybersecurity expert and part of the NCCgroup.
Deepdesk is currently fully GDPR compliant and will be ISO-27001 compliant by the end of 2022. By default we do not employ or share any algorithmic data with other AI services. No data is ever shared between tenants, and we do not use data without permission for generic models.
To meet compliance and privacy needs, we offer an extensive PII filter to anonymize customer data which performs with leading industry standards recognition rates. We employ state-of-the-art transformer based NER’s (entity recognition) such as Flair, as well as rule based filtering. Our infrastructure also falls within Google Cloud's privacy principles, which you can read about here: https://cloud.google.com/privacy/common-privacy-principles.