Start Free —1,000 creditsGet Started →
logo

Trust Center

Security & Trust

Sicada’s VoiceAI Engine is built with security, privacy, and reliability at its core. Our architecture is designed to minimise data exposure, ensure compliance, and provide enterprise-grade safeguards across all layers of the platform.

banner

Compliance

StandardDescriptionStatus
ISO 27001Information Security Management SystemCertified

GDPR

EU General Data Protection RegulationIn Progress

SOC 2

Security & Availability ControlsIn Progress

AI Compliance

Responsible AI governance & model safetyIn Progress

Risk Profile

Data Access Level

Restricted

Impact Level

Substantial

Recovery Time Objective

24–48 hours

Data Residency

Multi-region (India, US, customer-specific)

Persistent Storage

None – Stateless architecture

Call Recording Retention

Customer-controlled (S3 lifecycle policies)

Infrastructure Security

Multi-Region Deployment

Sicada operates infrastructure across multiple AWS regions to meet both performance and regulatory requirements:

  • India: ap-south-1 (Mumbai)
  • US: us-east-1 (N. Virginia)
  • Additional regions available based on customer requirements

Low-Latency AI Routing

To optimise real-time performance, Sicada leverages US-based infrastructure (us-east-1) for AI inference workloads (e.g., OpenAI APIs), ensuring faster response times and improved reliability

Cloud Infrastructure

  • Hosted entirely on AWS (EC2, VPC, S3)
  • Isolated VPC architecture
  • Private subnets for internal services
  • Public exposure limited to required endpoints only

DDoS Protection & Monitoring

  • AWS Shield Standard for automatic DDoS protection
  • Real-time monitoring via Wazuh SIEM
  • Automated alerting on anomalies

Infrastructure Security

Product Security

  • All APIs require authentication via x-api-secret
  • No public unauthenticated endpoints (except /health)
  • HMAC-SHA256 signed webhooks for integrity verification
  • Stateless architecture — no persistent internal database
  • API keys isolated per tenant
  • Services deployed in isolated containers

Data Security

  • TLS 1.2+ for all API traffic
  • DTLS-SRTP encryption for WebRTC
  • Secure WebSocket connections for streaming
  • Encrypted S3 storage with time-limited presigned access
  • No storage of call audio, transcripts, or PII
  • Redis state auto-expires; no long-term data retention

Access Control

  • Centralised SSO (SAML 2.0 via Authentik)
  • Mandatory MFA for all employees
  • VPN required for production access
  • Strict role-based access control
  • Full audit logging across systems

Network Security

  • TLS termination at secure edge (Nginx)
  • Private subnet isolation for internal services
  • Zero-trust access model
  • Allowlist-based firewall rules
  • Controlled outbound traffic to approved providers only

Endpoint Security

  • All devices managed via Fleet MDM
  • Wazuh EDR for threat detection
  • Continuous monitoring of device health
  • Full-disk encryption mandatory

Corporate Security

  • Mandatory security training for all employees
  • Documented incident response procedures
  • 72-hour breach notification (GDPR aligned)
  • Vendor risk assessment before onboarding

Subprocessors

We work with trusted third-party providers that meet our high standards for security and compliance.

CategorySubprocessorPurpose
Infrastructure & HostingAmazon Web Services (AWS)Compute, storage, networking
Telephony & Real-TimeTwilioPSTN connectivity, call routing
LiveKitWebRTC media server
AI & LLM ProvidersOpenAI, Grog, Google Gemini, vAILLM inference
Speech & VoiceDeepgramSpeech-to-text
ElevenLabs, CartesiaText-to-speech
Sarvam AIIndian language STT & TTS
Data & RetrievalPinecone, Qdrant, WeaviateVector database (embeddings)

AI Governance & Safety

Sicada maintains a responsible AI framework that includes:

Model governance and monitoring

Vendor risk evaluation (OpenAI, etc.)

Continuous evaluation of AI system safety

Data handling controls for AI inputs & outputs

Alignment with emerging global AI regulations

security

Contact

For security, privacy, or compliance inquiries, reach out to our team.

General Support

support@edysor.ai

Security Reports

support@edysor.ai

Compliance & Legal

support@edysor.ai
logo

AI-powered Voice, Chat, Interviews- designed to save time, costs and build efficiency.

Follow us on

LinkedInInstagramFacebook

Products

  • Voice Agent
  • Chat Agent

Resources

  • ROI Calculator
  • Voice Prompt Builder
  • Blogs
  • Pricing

Others

  • About Us
  • Contact Us
  • Privacy Policy
  • Terms of Service
  • Data Processing Agreement

All rights reserved. Powered by Edysor