8. Security Model
Vocalad’s multi-layered security and governance framework ensures data integrity, privacy, and compliance:
8.1 Dataset Isolation
Tenant-specific vector indices and compute environments.
AES-256 encryption at rest; TLS 1.3 in transit.
8.2 Access Control & Auditing
Role-based API keys (Admin, Developer, Listener).
Immutable audit logs of dataset uploads, retraining events, and query transcripts.
8.3 Prompt & Output Guardrails
Regex-driven filters and schema validators block out-of-scope or sensitive content.
Rate limiting and anomaly detection guard against injection attacks.
8.4 Compliance & Certifications
SOC 2 Type II (underway), GDPR-aligned data handling, HIPAA-ready modules.
Optional on-prem deployment for air-gapped or regulated environments.
Last updated