ozen labsTrust Center
Security & Compliance at Ozen
The controls, documents, and architecture your security and procurement teams need, with honest status on every line.
Data ownership
You Own the Data and the Keys
Bring your own keys
Run Ozen on your own model and data keys. We never sit between you and your providers.
Your data stays yours
Outcome data lives in your datastore. The signal-to-deal graph is yours, not ours.
No training on your data
Your accounts, messages, and results are never used to train models for anyone else.
Controls
Every Control, With Honest Status
SOC 2 Type II
audit window underway
GDPR
DPA on request
CCPA
Data Processing Agreement
ISO 27001
HIPAA
Sub-processors
The categories of providers Ozen uses. The complete, current list is maintained in the DPA.
Documents
Request any of these and a founder responds within one business day.
Security overview
Architecture, controls, and data flows
Data Processing Agreement (DPA)
GDPR Article 28, with sub-processor list
SOC 2 Type II report
Available once the audit completes
Reliability
- →99.9% uptime target on enterprise plans
- →Continuous monitoring and alerting
- →Documented incident response, breach notice within 72 hours
Responsible disclosure
Found a vulnerability? We want to hear from you. Email alen@ozenlabs.ai and we will acknowledge within one business day. We do not pursue good-faith researchers.
Bring Us Into Your Security Review
Send your questionnaire. We will turn it around fast.