Enterprise-Grade Security

Enterprise-grade security meets privacy-by-design architecture

All Systems Operational

Privacy-First Architecture

Your Response

Encryption

TLS 1.3

Identity Separation

Cryptographic

Aggregation

Min 5 responses

Statistical Processing

With bumpers

Protected Display

Anonymous only

Security Layers

Data Encryption

Industry-standard encryption protects your data:

  • In Transit: TLS 1.3 for all connections
  • At Rest: AES-256 encryption
  • Key Management: Google KMS

Access Control

Multi-layered access protection:

  • Authentication: OAuth 2.0 / SSO
  • Authorization: Role-based (RBAC)
  • Audit: All access logged

Anonymization

Mathematical privacy guarantees:

  • Separation: Identity cryptographically removed
  • Threshold: 5+ responses required
  • Irreversible: Cannot reconstruct

Infrastructure

Enterprise-grade cloud security:

  • Provider: Google Cloud Platform
  • Regions: Data residency options
  • Backup: Automated with encryption

Compliance

Meeting US privacy standards:

  • CCPA: California compliant
  • State Laws: VA, CO, CT, UT
  • SOC 2: Type II (in progress)

Vulnerability Management

Proactive security monitoring:

  • Scanning: Automated dependency checks
  • Testing: Regular penetration testing
  • Patching: Timely security updates

Incident Response

If a security incident occurs, we follow a tested response plan:

1
Detect

Automated monitoring alerts our team immediately

2
Contain

Isolate affected systems within minutes

3
Remediate

Fix vulnerabilities and restore service

4
Notify

Communicate transparently within 72 hours

Security Concerns?

Found a vulnerability? We want to hear from you.

security@pnps.ai

Responsible disclosure program • We respond within 48 hours

Security is a Journey, Not a Destination

We continuously improve our security posture to protect your trust.