Security
Enterprise posture from the first commit.
Voxely is SOC 2 Type II, GDPR-aligned, and HIPAA-ready, with VPC and on-prem deployment available at Enterprise.
SOC 2 Type II
Audited annually by a top-10 firm. Report available under NDA.
GDPR & UK GDPR
DPA on request. EU and UK data residency at Enterprise.
HIPAA-ready
BAA available. PHI scrubbing on transcripts and call metadata.
SSO & SCIM
Okta, Entra, JumpCloud, Google. SCIM provisioning out of the box.
RBAC
Per-action permissions, two-person rules, approval policies.
Audit log
Every agent decision and tool call, exportable to S3 / Snowflake.
Encryption
TLS 1.3 in transit. AES-256 at rest. Customer-managed keys at Enterprise.
VPC / on-prem
Deploy into your AWS or GCP account. Air-gapped option for regulated buyers.
Responsible disclosure
security@voxely.com · PGP key on file. We pay bounties.