Security & Compliance

Security & compliance are core values at SAIVA AI and we build them into our software and into the infrastructure we use to ensure that we can help our customers to protect their most valuable data assets.

SOC 2 Type 2

This independent audit certifies that SAIVA AI’s systems and processes meet the American Institute of Certified Public Accountants (AICPA) Trust Service Principles and Criteria. The SOC 2 Type 2 report documents the risk management controls put in place to address security and data protection risks and verifies its compliance with, and the operational effectiveness of, this set of controls and includes a review of critical security policies, procedures, and safeguards necessary to protect and secure client data.


SAIVA AI adheres to the regulations set forth by the Health Insurance Portability and Accountability Act (HIPAA) to protect the privacy and security of personal health information (PHI). This includes implementing administrative, physical, and technical safeguards to ensure that PHI is appropriately safeguarded from unauthorized access, use, or disclosure.

Threat Management

SAIVA AI performs periodic penetration tests and engages independent third-party entities to conduct application-level penetration tests. Internal vulnerability scans are run on a regular basis across all platforms and infrastructure. Security threats and vulnerabilities that are detected are prioritized, triaged, and remediated promptly.