Markprompt is SOC 2 Type II certified and GDPR compliant. Our SOC 2 and GDPR reports are available on demand to Enterprise customers.
Data Encryption
All customer data is encrypted at rest with AES-256 and in transit via TLS. Sensitive information like chat interactions are encrypted before they are stored in the database.
0-day Retention
Markprompt has a 0-day retention agreement with OpenAI, so no data is stored on OpenAI servers after a request has completed.
Uptime SLAs
Markprompt has a 99.9% server uptime, and quickly communicates in case of downtime or other events impacting the availability of the service.
Vulnerability Management
Markprompt works with industry experts to conduct penetration tests on a regular basis. Markprompt domains are continuously scanned for vulnerabilities.
Incident Response
Data security incidents or breaches receive prioritized attention, undergo comprehensive investigation, and are subjected to a well-defined incident management process to ensure proper handling.
Automated Backups
All customer data is backed up on a daily basis. Backups are persisted for 30 days.
Employee Training
Every employee at Markprompt undergoes annual security awareness training with an external provider.
Frequently asked questions
Yes, Markprompt is SOC 2 Type II certified. Our SOC 2 report is available on demand to Enterprise customers.
Yes, Markprompt is GDPR compliant. Our GDPR report is available on demand to Enterprise customers.
Yes, all data is encrypted at rest with AES-256 and in transit via TLS.
Markprompt offers PII removal tools that can be used on all content sources and chat interactions. For instance, if you are syncing historical tickets containing sensitive customer information, Markprompt can redact all the content before it is stored on our servers.
Markprompt supports Google, Azure, Okta and GitHub Single Sign-On.
Data is backed up on a daily basis. Backups are persisted for 30 days.
Yes, Markprompt works with industry experts to conduct penetration tests on a regular basis. In addition to penetration tests, we also implement daily code reviews, static analysis checks, and dependency scanning at the code level.
Yes, a list of our current subprocessors can be found on our subprocessors page.
If you encounter a security issue, it will be reviewed swiftly. Please send an email to security@markprompt.com.