Trust Center
Your conversations contain your organization's most sensitive knowledge and intellectual property. Here is exactly how we protect them.
"Your meetings are processed, never retained by AI providers, and never used to train any model - ours or anyone else's."
25/29
Controls passing
5
AI providers - zero retention
AES-256
Encryption standard
RLS
Database isolation layer
Security Principles
Data Ownership and Privacy
- You retain full ownership of all meeting content
- Zero-retention policy with every AI provider
- No model training on customer data - ever
- Full data export and deletion on demand
Defense in Depth
- Postgres RLS isolates workspaces at the DB layer
- Cryptographically signed tokens on every request
- 3-layer admin access control
- Intrusion detection with automatic IP blocking
Compliance and Transparency
- GDPR and CPRA compliant
- SOC 2 Type II certification in progress
- Full subprocessor disclosure below
- Security contact: security@memordesk.com
Compliance Status
GDPR
EU General Data Protection Regulation
CPRA
California Privacy Rights Act
SOC 2 Type II
In ProgressAICPA trust service criteria
ISO 27001
PlannedInformation security management
Security contact
Report vulnerabilities or request our security documentation