Built for enterprise security and compliance

Learn our approach to building reliable and secure enterprise AI and modern service management platform — including our commitment to customer security, data processing, privacy, and compliance.

Don't take our word for it

We prioritize your business safety with best in class enterprise security, compliance and privacy standards.

SOC 2 Type 1

Security, confidentiality, availability, and privacy trust services criteria

SOC 2 Type 2

Security, confidentiality, availability, and privacy trust services criteria
CCPA Compliant Badge - California Consumer Privacy Act Certification for Atomicwork

CCPA

Safeguarding consumer privacy
GDPR Compliant Badge - Ensuring Data Protection and Privacy with Atomicwork

GDPR

Protecting data privacy rights
HIPAA Compliant Badge - Health Insurance Portability and Accountability Act Certification for Atomicwork

HIPAA

Protecting people's health information

CSA Star Level 1

Enhanced security controls for cloud applications and service providers

ISO 27001

Global standard for information security management systems
ISO 27017 Certified Badge - Cloud Security Certification for Atomicwork

ISO 27017

Global standards for information security controls in cloud services
ISO 27018 Certified Badge - Protection of Personal Data in the Cloud Certification for Atomicwork

ISO 27018

Global standards for protecting personally identifiable information (PII)
ISO 27701 Certified Badge - Privacy Information Management System Certification for Atomicwork

ISO 27701

Information management standards for compliance with privacy laws

Microsoft 365

Validates our expertise in managing, deploying, and optimizing Microsoft 365 solutions

Providing you with enterprise trust and confidence

We leverage best practices across company policies to ensure you can rest easy with your information

Customer data security

Atomicwork has been designed to protect your data at every step along the way.

  • Every customer's data is stored in a self-hosted vector database in their own tenant.
  • Customers can control what data Atom crawls and indexes in knowledge sources and conversations.
  • No user data is used for model training or tuning. We do not share it with third parties either.
  • Personally identifiable data (PII) is redacted during data ingestion and masked in requests and Atom conversations.
  • AI insights and performance reports are built using anonymized  data to maintain user privacy.

LLM and AI model security

Atomicwork's ensemble AI model architecture is self-hosted on a secure cloud platform and designed to leverage the advantages of different models for different service management and employee experience usecases.

  • Responsible AI methods with continuous testing for prompt injections, leakage, model jail break and safety evasion.
  • Grounded by customer data and preferences, with boundaries and guardrails to avoid hallucinations and remove biases.

Atomicwork AI platform security

Atomicwork has built layers of security measures to make sure user data is safe, secure and properly used.

  • Access control lists (ACLs) are inherited from knowledge management systems or configured in Atomicwork for all content.
  • Comprehensive audit logs detail who accessed specific data and all operations performed within the platform.
  • Enterprise work applications are accessed only using a self-hosted iPaaS so data stays in the Atomicwork trust boundary.
HR Teams use Atomicwork to build workflows that can automate repeatable actions so that they can focus on more strategic work

Atom AI and LLM model operations

Atomicwork employs extensive testing techniques to ensure AI models perform reliably under various conditions.

  • Continuous monitoring systems to track AI performance in real-time.
  • Controlled release cycles so the team can efficiently manage and roll out changes.
  • Troubleshooting mechanisms put privacy first and ensure that developers are given only access to redacted data.

Provide proactive employee self-service assistance through Atomicwork journeys; schedule messages, set up automated actions and assign tasks to guide employees through pivotal lifecycle events

Best in-class security compliance

Atomicwork has been designed, ground-up, to ensure that maintaining data security and user privacy is paramount.

Authenticated access

Simplify access and enhance security by leveraging your enterprise IAM platform's SSO capabilities.

Permissions-aware access

Atomicwork inherits permissions from source docs and systems, and allows teams to configure content ACLs.

Real-time content sync

Content syncs with source applications, maintaining compliance and consistency, reducing risk of outdated information.

Personalized answers

Atomicwork provides contextualized answers based on a user's context (location, department etc.)

Explainable AI

Atomicwork shows the math when generating answers or providing insights by linking to source information.

Need-to-know basis

Atomicwork maintains user privacy by redacting PII in all circumstances, including data ingestion.

Want to know more?

Please use one of the options below to get in touch with our security team

Responsible disclosure

We are committed to working with researchers to verify, reproduce and respond to legitimate reported security vulnerabilities.
Learn more

Privacy requests

We give you control over your personal data. You can access your data, delete it, and manage how it gets used.
Raise request

Get in touch

Are you interested in having a discussion with our security team? Send us an email with more information and we'll get back.
Talk to us