---
template: "page.peb"
title: "Security and Privacy Policy"
displayName: "Security and Privacy Policy"
description: "High-level security and privacy controls for iDialogue infrastructure, integrations, and customer data handling."
category: "security"
contentType: "policy"
audience: "end-user"
tags: "security,privacy,policy,compliance"
section: "security"
seoTitle: "Security and Privacy Policy"
seoDescription: "High-level security and privacy controls for iDialogue infrastructure, integrations, and customer data handling."
---

## Security and Privacy Policy

Last updated: **March 2025**.

This policy summarizes iDialogue controls for data protection, infrastructure security, and customer governance.

## Core controls

- No AI model training on customer data from platform usage.
- Data processing agreements with key subprocessors.
- MFA and role-based access controls for infrastructure access.
- Encryption in transit (TLS 1.2+) and at rest (AES-256).
- Tenant-aware controls for Salesforce and customer-facing experiences.

## Operations and resilience

- Infrastructure monitoring with incident triage procedures.
- Daily backups with documented recovery objectives.
- Code review, dependency patching, and change management processes.

## Customer controls

- Customers govern prompts, memory, and data sharing scope.
- Deletion controls available for memory, templates, and content artifacts.
- Salesforce-native security layers remain central to access governance.