Skip to main content
Genie9

Security & Compliance

Enterprise-grade security. Audit-ready compliance.

AES-256 encryption at rest, TLS 1.3 in transit, SOC 2 Type II certified, HIPAA-compliant infrastructure, GDPR-ready data handling, WORM-immutable storage for retention-locked records.

Start Free Trial Read Trust Center

Certifications & Frameworks

Built on the frameworks auditors trust.

SOC 2 Type II

Annual audit, infrastructure + operational controls

HIPAA-compliant infrastructure

BAA available; PHI handled per HHS guidance

GDPR-ready

DPA available, data residency support via Continental Region

AES-256 at rest · TLS 1.3 in transit

AES-256-GCM authenticated encryption per chunk

Encryption

Encrypted at rest. Encrypted in transit.

AES-256-GCM authenticated encryption per chunk. Per-tenant keys. Optional zero-knowledge mode via Nygma cross-product integration.

Encryption details

Access Controls

Who can do what, where, and when.

  • SSO/SAML on Pro+
  • Role-based access (Owner, Admin, User, View-Only, Approver)
  • Per-workspace permissions · details →
  • Audit log on every action (who, when, what, IP)

WORM Compliance Lock

Write-Once-Read-Many immutable retention.

SEC 17a-4 / FINRA / HIPAA / SOC 2 compatible. Once locked, records cannot be deleted or modified for the retention period — including by admins.

WORM details

Ransomware Defense

Multi-layered defense at the backup tier.

  • Deterministic canary detection · Ransomware Canary →
  • WORM-immutable backups protect against admin-account compromise
  • Recovery Shield UI freezes backup chain on tamper detection

Data Residency

EU data stays in EU. US data stays in US.

Continental Region (Pro+) — multi-region replication with custom region pairs for compliance.

Continental Region

Compliance Asset

Verification Evidence Pack.

Free local Hyper-V verification on cached DR images is included on every paid tier; the cloud-side Verification Evidence Pack (paid add-on) adds AWS boot tests with screenshots and audit-bundle export — the artifact your auditors want to see. Boot Verification →

Honesty

What we DON'T provide.

Pre-built compliance report templates

For HIPAA / PCI / SOC 2 — roadmapped (Pro v2), not at launch. WORM-immutable + audit-log export covers the underlying compliance posture; pre-built report templates are the next layer.

Antivirus / EDR

We complement, not replace. Use CrowdStrike / SentinelOne / Microsoft Defender for endpoint security.

Audit-ready by design.

Start Free Trial Read Trust CenterRequest DPA / BAA