Security

Security is built into Seny from day one. This page outlines the controls in place and what we're working toward.

Encryption

All traffic uses TLS 1.2+. Data at rest is encrypted with AES-256. Database backups are encrypted and rotated daily.

Access control

Production access is gated by SSO + hardware keys, role-based, and audit-logged. No engineer has standing access to customer transcripts — access is just-in-time and logged.

Tenant isolation

Every customer's data is isolated by row-level security policies in Postgres. The voice broker enforces per-org credit limits and origin allowlists at the edge.

Compliance

Seny is built to support SOC 2 Type II — we expect to complete the audit within our first year of public launch. GDPR-friendly controls (data export, right to delete, audit log) are available today.

Reporting a vulnerability

Found something? Email security@seny.ai. We'll respond within 24 hours.