Security & privacy
at Robin AI

Robin AI's security systems are ISO, SOC2 and EU GDPR certified — we're committed to your security and privacy as a core value.
governance

At Robin AI, security and privacy are crucial for earning user trust. We maintain robust safeguards around user data through comprehensive policies and systems. Responsibility for security spans all company levels, with regular monitoring and auditing to ensure adherence to strict data protection standards.

Security & compliance at Robin

Robin AI's security systems are ISO, EU GDPR and SOC 2 certified and your data never leaves our secure AWS cloud environment. We're committed to your security and privacy as a core value.

Data protection

Data at rest

All databases containing customer data are encrypted while at rest.

Data in transit

Robin AI always uses TLS 1.2 or higher, along with HSTS, to ensure secure data transmission.

Secret management

Robin AI securely stores and manages encryption keys to safeguard sensitive information.

Penetration testing

Robin AI engages with a leading penetration testing consulting firm annually to ensure rigorous security evaluations of all aspects of its product and cloud infrastructure.
Governance
All corporate devices within Robin AI are centrally managed and equipped with mobile device management (MDM) software, alongside anti-malware protection. Endpoint security alerts undergo continuous monitoring, ensuring round-the-clock coverage throughout the year. MDM software is utilized to enforce secure endpoint configurations, which include disk encryption, screen lock setup, and software updates.
Vendor security
Robin AI employs a risk-based methodology to evaluate vendor security. Factors contributing to a vendor's inherent risk rating include:
Access to customer and corporate data
Point Integration with production environments
Potential impact on the Robin AI brand
After determining the inherent risk rating, the vendor's security measures undergo assessment to determine a residual risk rating, which informs the decision regarding vendor approval.
Security training
Robin AI provides comprehensive security training to all employees as part of their onboarding process and annually through educational modules within Robin AI's platform. Additionally, all new hires are required to attend a live onboarding session that emphasizes key security principles. New engineers undergo a mandatory live onboarding session specifically focused on secure coding principles and practices.

Furthermore, Robin AI's security team conducts regular threat briefings to keep employees informed about critical security updates and safety-related information that may require special attention or action.
Identity & Access Management
Employees at Robin AI are granted access to applications based on their roles and are automatically deprovisioned upon termination of their employment. Any additional access beyond their initial permissions must be approved in accordance with the policies established for each application.

Data privacy

At Robin AI, safeguarding data privacy is of paramount importance. We are committed to being reliable custodians of all sensitive data.

Learn more about about Robin's security measures on our trust center.

Trust center