Enterprise-grade security.
Built in from day one.
Your revenue data is critical. ScendCore protects it with encryption, tenant isolation, AI governance, and compliance controls — included in every plan, not just Enterprise.
Governance is never gated. Every tier. Every plan.
- AES-256 encryption at rest for all data
- TLS 1.3 encryption for all data in transit
- API keys and credentials encrypted with separate key management
- Database backups encrypted at rest
- Row-level security (RLS) enforced at the database layer
- Every query scoped to authenticated tenant — no cross-tenant access
- Separate encryption contexts per tenant
- Tenant-level feature flags and entitlements
- Approval queues — human reviews AI actions before execution
- Full audit trail — every AI action logged with timestamp and context
- Kill switch — pause any AI agent instantly
- 4 autonomy levels — Draft, Supervised, Controlled, Full Autonomous
- Decision log — complete record of all AI decisions
- Role-based permissions — 7 roles with granular access control
- 7 role levels: Owner, Manager, Approver, Closer, CS, Marketing, Viewer
- SSO/SAML support (Enterprise tier)
- OAuth 2.0 for all third-party integrations
- API authentication with scoped tokens
- Session management with configurable timeouts
- Hosted on enterprise-grade cloud infrastructure (AWS via Supabase)
- PostgreSQL database with automated daily backups
- Point-in-time recovery capability
- Redundant infrastructure across availability zones
- Continuous monitoring and automated alerting
- 99.9% uptime target
- GDPR compliant — data export, deletion, and processing controls
- SOC 2 Type II — infrastructure designed to meet requirements (certification in progress)
- Data Processing Agreement (DPA) available on request
- Right to erasure — complete data deletion on request
- Data portability — export all your data at any time
- Incident response plan with 48-hour notification commitment
Every AI action in ScendCore is auditable, approvable, and reversible. Approval queues, audit trails, and kill switches are included in every plan — not locked behind Enterprise pricing. We believe governance is a foundation, not a feature.
Frequently Asked Questions
ScendCore data is stored in secure, enterprise-grade cloud infrastructure. Database hosting is provided by Supabase (AWS). We can discuss specific region requirements for Enterprise customers.
Only authenticated users within your tenant can access your data. Row-level security is enforced at the database layer — not the application layer. ScendCore support staff access is logged and limited to troubleshooting with your explicit permission.
Your data is retained for the duration of your subscription. Upon cancellation, data is preserved for 30 days (for reactivation), then permanently deleted. You can request immediate deletion at any time.
Yes. You can export all your data at any time via the dashboard or API. We support CSV, JSON, and PDF exports. Your data is yours — no lock-in, no proprietary formats.
We have a documented incident response plan. In the event of a data breach, we will notify affected customers within 48 hours, provide a detailed incident report, and take immediate remediation steps. Contact security@scendcore.com for our full incident response policy.
Yes — conversation transcripts, voice recordings, and AI-generated content are stored securely within your tenant. All data is encrypted at rest and in transit. You control retention through your account settings. Audit trails log every AI action for compliance.
Our infrastructure and processes are designed to meet SOC 2 Type II requirements. Formal certification is in progress. Contact us for our current security documentation and timeline.
SSO/SAML is available on the Enterprise tier. This includes support for Okta, Azure AD, Google Workspace, and other SAML 2.0 identity providers.
Have security questions?
We're happy to discuss our security practices, provide additional documentation, or complete your security questionnaire.