Security and Privacy Policy
Last updated: March 2025.
This policy summarizes iDialogue controls for data protection, infrastructure security, and customer governance.
Core controls
- No AI model training on customer data from platform usage.
- Data processing agreements with key subprocessors.
- MFA and role-based access controls for infrastructure access.
- Encryption in transit (TLS 1.2+) and at rest (AES-256).
- Tenant-aware controls for Salesforce and customer-facing experiences.
Operations and resilience
- Infrastructure monitoring with incident triage procedures.
- Daily backups with documented recovery objectives.
- Code review, dependency patching, and change management processes.
Customer controls
- Customers govern prompts, memory, and data sharing scope.
- Deletion controls available for memory, templates, and content artifacts.
- Salesforce-native security layers remain central to access governance.