Trust & Security
Denser is committed to security. We protect your data with encryption, least-privilege access, and a documented security program, all running on trusted AWS infrastructure. If you have any questions or concerns, reach our security team at security@denser.ai.
Our commitments
The defaults that govern how we handle your data, on every plan.
Your data is encrypted in transit with TLS and at rest in our cloud infrastructure.
Your content powers only your own chatbots. It is never used to train shared models.
Role-based permissions and per-chatbot access keep the right people on the right data.
Export or delete your sources and conversations whenever you need to.
Infrastructure
Denser runs entirely on Amazon Web Services, with encryption, monitoring, and recovery built in.
All Denser services and data are hosted on Amazon Web Services (AWS), which operates a robust security program with industry certifications including SOC 2, ISO 27001, and PCI DSS.
Customer data is stored in AWS data centers located in the United States, under AWS's physical and environmental security controls.
All data is encrypted at rest, and all traffic to and from our applications is encrypted in transit using TLS.
We scan for vulnerabilities and actively monitor our infrastructure for threats.
We log and monitor activity across our cloud services and alert our team to anomalies.
We use AWS backup services to protect against data loss, with monitoring that alerts the team to failures affecting users.
We maintain an incident response process covering escalation, rapid mitigation, and customer communication.
Access
Access to systems and customer data is limited, authenticated, and reviewed.
Access to infrastructure and sensitive tools is limited to authorized team members and protected by single sign-on (SSO), two-factor authentication (2FA), and strong password policies where available.
We follow the principle of least privilege across identity and access management.
We review access to sensitive systems on a regular basis and remove access that is no longer needed.
Team members follow minimum password complexity requirements and use a company-issued password manager.
Organization
Security is a documented, company-wide responsibility, not an afterthought.
We maintain an information security program with documented policies that every team member reviews and accepts. The program is built around the SOC 2 framework.
Security roles and responsibilities, including the protection of customer data, are clearly defined and documented.
Team members complete security awareness training covering industry-standard practices such as phishing and password hygiene.
All team members sign and adhere to a confidentiality agreement before their first day of work.
Risk
We assess our own risk and the security posture of the vendors we rely on.
We conduct security risk assessments to identify and address potential threats to our systems and data.
We review the security posture of vendors and perform appropriate due diligence before granting them access to systems or data.
Compliance
Denser's information security program is built around the SOC 2 framework, and we are actively pursuing certification. We are not certified yet. If your procurement team has specific requirements, contact us and we'll walk through our current practices and timeline.
Denser is committed to security. If you have any questions or concerns, or wish to report a potential security issue, reach our security team and we'll respond promptly.
