Security at Prospello

Your data security is our top priority. Learn how we protect your information.

Enterprise-Grade Security

Prospello implements industry-leading security measures to protect your data at every level. From infrastructure to application security, we follow best practices and maintain compliance with international security standards.

Infrastructure Security

Cloud Infrastructure

  • Hosted on Google Cloud Platform with enterprise security controls
  • Data encrypted at rest using AES-256 encryption
  • Data encrypted in transit using TLS 1.3
  • Isolated Virtual Private Cloud (VPC) networks
  • DDoS protection and Web Application Firewall (WAF)

Database Security

  • Row-level security (RLS) policies enforced at database level
  • Encrypted database backups with point-in-time recovery
  • Regular security patches and updates
  • Separate environments for development, staging, and production

Application Security

Authentication & Access Control

  • OAuth 2.0 for third-party integrations
  • Multi-factor authentication (MFA) available
  • Session management with automatic timeout
  • Role-based access control (RBAC)
  • API key rotation and management

Data Protection

  • No storage of email/calendar credentials
  • Secure token storage for OAuth connections
  • Input validation and sanitization
  • SQL injection prevention
  • Cross-site scripting (XSS) protection

AI & Data Processing Security

Important AI Security Notice

Our AI agents process your data within our secure infrastructure:

  • Customer data is never used to train our core AI models without explicit consent
  • AI processing happens within our secure environment, not third-party services
  • Strict data isolation between customer accounts
  • No sharing of customer data between organizations

Compliance & Standards

GDPR Compliant

Full compliance with EU data protection regulations

CCPA Compliant

California Consumer Privacy Act compliance

SOC 2 (In Progress)

Working towards SOC 2 Type II certification

Security Best Practices

Regular Security Audits

Periodic third-party security assessments and penetration testing

Employee Security Training

All employees undergo security awareness training and background checks

Incident Response Plan

24/7 monitoring with documented incident response procedures

Vulnerability Management

Continuous vulnerability scanning and rapid patching program

Report a Security Issue

If you discover a security vulnerability or suspect any security issue with our service, please report it immediately.

Email: security@prospello.ai

We appreciate responsible disclosure and will acknowledge your report within 24 hours.

Security Contact

For security-related questions or to request our security documentation:

Security Team: security@prospello.ai

Legal & Compliance: legal@prospello.ai

Data Protection Officer: privacy@prospello.ai

Related Documents

Privacy Policy →Terms of Service →