Your data is
in safe hands.
From encryption to access management, Friender enforces rigorous standards to ensure your data stays secure, private, and compliant.
Friender is committed to maintaining compliance with the most rigorous international safety and security standards.
ISO 42001
ISO 42001 certified, our AI governance framework gives customers confidence in how we build and run AI.
ISO 27001
Fully certified with ISO 27001, the internationally recognized standard for information security management.
SOC 2 Type II
We meet SOC 2 requirements to ensure secure and compliant management of data across all our systems.
GDPR
We operate under GDPR — the world’s strictest standard for data privacy.
Trusted data storage
Logically isolated environments
Every customer environment is logically isolated. Your operational data, agent configurations, and intelligence outputs are never shared across accounts.
US-based infrastructure
All data is hosted on AWS in US regions with dedicated key management infrastructure and automatic key rotation.
No model training on your data
Your operational data, meeting transcripts, workflow patterns, and agent outputs are never used to train or fine-tune AI models. Full stop.
Legal-grade security
Zero trust design principles
We follow Zero Trust architecture, meaning no user or system is inherently trusted — access is always verified, limited, and logged.
Your approval required
Friender agents observe through read-only API connections. We never write, modify, or delete data in your systems unless you explicitly grant access.
Regular security audits
Friender undergoes annual penetration tests covering the full platform scope and follows an assume-breach methodology to proactively identify and mitigate risks.
Continuous monitoring
Our security team monitors infrastructure 24/7 with automated threat detection, anomaly alerts, and incident response procedures with <1hr acknowledgment.
Full ownership
and flexibility
Friender supports all common Single-Sign-On protocols, ensuring you are in full control over your end-users' access to Friender. Via our enterprise security packages you are in control of where your data is stored, for how long it is stored, how the encryption key is managed, and you have full visibility over how your data is managed throughout the platform.
You maintain control over your data at all times.
Data retention
Set and manage data retention periods to align with your internal policies and regulatory requirements.
Data governance
Real-time audit logs track who accessed what, when, and from where. Full visibility into data flows.
Encryption management
All data encrypted with AES-256 at rest and TLS 1.3 in transit. Keys managed through dedicated KMS with auto-rotation.
User authentication
SSO integration supports SAML 2.0 and OpenID Connect. Complete control over user authentication and access management.
FAQ
All data in transit is encrypted with TLS 1.3. Data at rest is encrypted with AES-256. Encryption keys are managed through dedicated key management infrastructure with automatic rotation. For customers who require additional control, we offer the option to manage their own encryption keys.