Security & Compliance
Aquasight is currently undergoing a SOC 2 Type II audit with Insight Assurance, with expected completion in Q2_ 2026. In the interim, we can provide the engagement letter or support a security questionnaire.
To request our security documentation, including our readiness report and SIG questionnaire, use the form below.
Data Handling & Residency
All customer data is encrypted in transit (TLS 1.2+) and at rest (AES-256). Data is hosted on AWS within the United States. We do not transfer data outside the US unless explicitly agreed upon in writing.
AI & Model Training
Customer data is never used to train models serving other customers. All model training is performed exclusively on the respective customer's own data, and only with explicit consent.
We do not use customer data for benchmarking, aggregation, or any cross-customer purpose without prior written authorization.
Incident Response & Business Continuity
Aquasight maintains a documented incident response plan with the following commitments:
- Security incidents are triaged within [X hours] of detection
- Affected customers are notified within [X hours] of confirmed impact
- Post-incident reports are provided within [X business days]
Our platform is built for 99% uptime with automated failover and [daily/continuous] backups. Recovery point and recovery time objectives are defined in each customer agreement.
Last updated: March 2026
