Protecting our organization and your data

ISO 27001 and ISO 27701

Information Security Management System (ISMS) and Privacy Information Management System (PIMS)

ISO/IEC 27001 certified since May 2021 with 113/114 security controls implemented, complex information security management system (ISMS) with whole company in scope including subsidiaries.

ISO/IEC 27701 certified since June 2022 with 46/49 privacy controls implemented, complex privacy information management system (PIMS) with whole company in scope including subsidiaries.

Learn more

ISO 27701

Certified Privacy Information
Management System (PIMS)

GDPR-features

Your data, your rules,
your compliance

Learn more

OWASP

Open Web Application
Security Project

Learn more

Solution security

Boost.ai’s conversational AI includes robust and adjustable security and privacy protection mechanisms, such as:

Segregated single-tenant customer environments
Availability zones
Data encryption at transfer and at rest
Malware detection
Intrusion detection
Hardening of servers to reduce attack surface
Vulnerability monitoring
Patch management
Distributed Denial of Service (DDoS) protection
Password quality checks, 2-factor authentication
Single Sign On (SSO)
Role segregation
IP allowlisting
Anonymization and partial masking of data
Log and event tracking
Penetration testing

Compliance programs held by AWS
Shared responsibility model with AWS

“Security and compliance is a key part of who we are and what we deliver. Our goal has always been to make the best solution for enterprises and to do that you also have to be best in class on security and compliance.”

Lars Selsås

Founder and CEO, boost.ai

Read case study