We’re SOC 2 Type 2 certified by external auditors. This means that we have a strong security focus. We protect our systems against unauthorised access to prevent potential system abuse, theft of or unauthorised removal of data, improper disclosure of information, etc.

You can view our data processing agreement and how we handle uploaded data with our subprocessors here.

We use Google Cloud platform for all our hosting. Any files you upload (e.g. video recordings, audio recordings and transcripts) are stored in Europe (Scandinavia). 

We store all our data encrypted using strong encryption algorithms both at rest and in transit.In addition to encryption, we implement a multi-layered security approach to safeguard your data.

We enforce strict access controls to ensure that only authorised personnel can access your data. 

Our infrastructure is hosted in secure data centres that comply with all relevant security standards. We also maintain a comprehensive incident response plan to quickly address any potential security incidents.

The Breyta team are under NDA's and has access to your data based on access roles and authorization policies to ensure that we can help you troubleshoot if you encounter issues.

In some cases, our service providers may store and access your data for a time. Read more in the summary here. 

No one beyond our team and our providers can access your data. No data is shared between workspaces.

By default when we show you output, we tell the AI to not include any PII. Instead of it saying for example Chris and Jan Tore said, it will say “Users, participants, test participants and other examples”. 
‍

We automatically delete any data you’ve uploaded a year after you uploaded the data. 

You can also delete data any time from your workspace. Once you’ve deleted data, all traces of the data are removed.

For example, if you delete a video recording that has been analysed in a project, you will lose access to:
- The related transcript Any quotes in the evidence part of insights 
- The follow-up feature where you can ask for quotes from a specific session 
- Any metadata related to the data (e.g. when it was uploaded, when it created, etc.) 

That said, you’ll continue to be able to access any findings or insights generated from the data you uploaded, even after the data has been deleted, because these are anonymised and aggregated results. 

We currently don’t strip any PII from the data you upload (e.g. video recordings, audio recordings, and transcripts). 

However, we try to remove PII in the findings and insights that our AI assistant generates for you. While this works well most of the time, it’s not a 100% bulletproof solution. If you see any PII in your findings or insights, please let us know via support@breyta.ai so that we can improve.

Privacy is important to us. Find out more about how we handle your data in our privacy policy.

We automatically delete any data you’ve uploaded a year after you uploaded the data. You can also delete data any time from your workspace.

Once you’ve deleted data, all traces of the data are removed.

For example, if you delete a video recording that has been analysed in a project, you will lose access to:
‍
- The related transcript 
- Any quotes in the evidence part of insights 
- The follow-up feature where you can ask for quotes from a specific session 
- Any metadata related to the data (e.g. when it was uploaded, when it created, etc.) 

That said, you’ll continue to be able to access any findings or insights generated from the data you uploaded, even after the data has been deleted, because these are anonymised and aggregated results. 

We’re not building any AI models. Our product is entirely built on models from our AI providers, OpenAI and Anthropic, who guarantee that none of your data will be used for training purposes.

If you’re an enterprise company on a premium plan we can facilitate so that you can use your own cloud hosting.