privacy and Security
Rolai is committed to building trust in our organization and platform by protecting our customer data, models, and products.
Compliance & Accreditations
Compliance
We encrypt data at rest (AES-256) and in transit (TLS 1.2+). We can execute a Data Processing Agreement if required.
Rolai is undergoing evaluation by a third-party security auditor and is expecting to receive SOC 2 compliance, GDPR and CCPA.
External Auditing
All Rolai solutions undergo annual third-party penetration testing, which identifies security weaknesses before they can be exploited by malicious actors.
Customer requirements
Rolai has experience helping our customers meet their regulatory, industry and contractual requirements (e.g., HIPAA). Contact us to learn more.
Reporting Security issues
Rolai invites security researchers, ethical hackers, and technology enthusiasts to report security issues via our Bug Bounty Program. The program offers safe harbor for good faith security testing and cash rewards for vulnerabilities based on their severity and impact.