Sapience Data Security, HIPAA, GDPR
Details of how we handle data.
Data Security in Sapience
Version: 3.8 Date: 2026.01.18 Audience: Technical Users, Security Officers, Compliance Teams
Executive Summary
Sapience is designed from the ground up with enterprise-grade security and compliance in mind. Our platform provides:
- Full regulatory compliance with HIPAA and GDPR frameworks
- End-to-end encryption for data at rest and in transit
- Sophisticated RBAC with role hierarchies and granular permissions
- Complete audit trails tracking every data access and modification
- Zero data leakage guarantee with strict data isolation
- Flexible deployment options from fully-managed cloud to on-premises
- Global presence across USA, Europe, Australia, and the Middle East
This document provides technical details on how Sapience protects your sensitive company data while enabling powerful AI-assisted workflows.
Regulatory Compliance
HIPAA Compliance
The Health Insurance Portability and Accountability Act (HIPAA) establishes requirements for protecting sensitive patient health information. Sapience addresses all key HIPAA requirements:
HIPAA Requirement | Sapience Implementation |
Access Controls | Role-based access with granular permissions; principle of least privilege enforced |
Audit Controls | Comprehensive event logging of all PHI access with timestamps and user attribution |
Integrity Controls | Object versioning ensures data integrity; checksums validate data consistency |
Transmission Security | TLS 1.2+ encryption for all data in transit; certificate pinning available |
Encryption | AES-256 encryption at rest; bcrypt password hashing with 12 salt rounds |
Automatic Logoff | Configurable session timeouts with JWT token expiration |
Unique User Identification | UUID-based user identification; no shared accounts permitted |
Emergency Access | Superuser break-glass procedures with full audit logging |
BAA Available: Business Associate Agreements are available for healthcare organizations requiring formal HIPAA compliance documentation.
GDPR Compliance
The General Data Protection Regulation (GDPR) governs data protection and privacy in the European Union. Sapience provides full GDPR compliance:
GDPR Principle | Sapience Implementation |
Lawfulness & Transparency | Clear data processing documentation; consent management |
Purpose Limitation | Data used only for stated purposes; no secondary AI training |
Data Minimization | Collect only necessary data; configurable retention policies |
Accuracy | Version control allows corrections; audit trail of changes |
Storage Limitation | Configurable data retention with automatic purging options |
Integrity & Confidentiality | Encryption, access controls, and audit trails |
Accountability | Comprehensive logging demonstrates compliance |
GDPR-Specific Features:
- Right to Access: Export all user data in machine-readable format
- Right to Rectification: Full edit history with version control
- Right to Erasure: Complete data deletion with cascade support
- Data Portability: Standard JSON/PDF export formats
- EU Data Residency: Deployment options in EU data centers
Data Encryption
Encryption at Rest
All data stored by Sapience is encrypted using industry-standard algorithms:
Key Management:
- Encryption keys stored separately from encrypted data
- Automatic key rotation on configurable schedules
- Support for customer-managed keys (BYOK) in enterprise deployments
- HSM integration for key protection in high-security environments
Encryption in Transit
All network communication is encrypted using TLS/SSL:
Certificate Management:
- Automated certificate renewal via Let's Encrypt or enterprise CAs
- Certificate transparency logging
- OCSP stapling for efficient revocation checking
Access Control
Role-Based Access Control (RBAC)
Sapience implements a hierarchical role-based access control system that ensures users can only access resources appropriate to their role:
Role Definitions:
Role | Description | Typical Use Case |
ORG_ADMIN | Organization management | IT administrators, team leads |
POWER_USER | Advanced features | Analysts, developers |
USER | Standard access | General employees |
ANON_USER | Minimal guest access | External collaborators |
Granular Permission System
Beyond roles, Sapience supports fine-grained permissions that can be assigned independently:
Agent Permissions:
AGENTS_CREATE_AGENT_PERSONAL- Create personal AI agents
AGENTS_ORG_CREATE_AGENT- Create organization-wide agents
AGENTS_ORG_EDIT_AGENT- Modify organization agents
AGENTS_ORG_DELETE_AGENT- Remove organization agents
Feature Permissions:
CHAT_MODEL_OVERRIDE- Override default AI model settings
SUPER_ONLY_REALTIME_VOICE- Real-time voice capabilities
SUPER_ONLY_LOCALIZATION- Localization features
SUPER_ONLY_CREATE_AGENT_GLOBAL- Create globally available agents
Permission Levels:
- Read-Only: View data without modification capability
- Read-Write: Full access to view and modify data
- Admin: Manage permissions and settings for the resource
Scope-Based Access
All resources in Sapience are scoped to control visibility:
Scope Types:
USER- Private to the individual user
TEAM- Shared within a specific team
ORG- Available to all organization members
GLOBAL- Platform-wide visibility (admin-controlled)
Audit & Compliance
Comprehensive Audit Trails
Every action in Sapience is logged with complete context:
Tracked Events Include:
Category | Events |
Agents | Created, Updated, Deleted, File Added/Removed |
Conversations | Created, Renamed, Deleted, Exported, Shared |
Files | Uploaded, Downloaded, Shared, Scope Changed, Deleted |
Users | Login, Logout, Password Changed, Email Verified |
Sharing | Share Created, Accessed, Revoked |
System | Job Success/Failure, Task Created/Completed |
Audit Log Retention:
- Configurable retention periods (default: 7 years for compliance)
- Immutable storage for tamper-proof audit trails
- Export capabilities for external SIEM integration
Object Versioning
All Sapience objects maintain a complete version history:
┌─────────────────────────────────────────────────────────────────┐
│ OBJECT VERSIONING │
├─────────────────────────────────────────────────────────────────┤
│ │
│ Document: "Q4 Strategy Report" │
│ │
│ Version History: │
│ ┌───────┬────────────────────┬─────────────┬────────────────┐ │
│ │ Ver │ Timestamp │ User │ Change Summary │ │
│ ├───────┼────────────────────┼─────────────┼────────────────┤ │
│ │ v1.0 │ 2026-01-15 09:00 │ john.doe │ Initial draft │ │
│ │ v1.1 │ 2026-01-16 14:30 │ jane.smith │ Added section 3│ │
│ │ v1.2 │ 2026-01-17 11:15 │ john.doe │ Revised intro │ │
│ │ v2.0 │ 2026-01-18 10:00 │ jane.smith │ Final approval │ │
│ └───────┴────────────────────┴─────────────┴────────────────┘ │
│ │
│ Features: │
│ • Point-in-time recovery │
│ • Diff comparison between versions │
│ • Restore previous versions │
│ • Version-specific sharing │
│ │
└─────────────────────────────────────────────────────────────────┘
Event-Driven Architecture
Sapience uses a message bus architecture for reliable event processing:
Data Privacy Guarantees
No Model Training on Customer Data
Sapience makes a binding commitment: We never train AI models on your data.
┌─────────────────────────────────────────────────────────────────┐
│ DATA ISOLATION GUARANTEE │
├─────────────────────────────────────────────────────────────────┤
│ │
│ Your Data │
│ │ │
│ ▼ │
│ ┌─────────────────┐ │
│ │ Sapience │ │
│ │ Platform │ │
│ └────────┬────────┘ │
│ │ │
│ ┌───────────┴───────────┐ │
│ │ │ │
│ ▼ ▼ │
│ ┌──────────────┐ ┌──────────────┐ │
│ │ AI Model │ │ Model │ │
│ │ Inference │ │ Training │ │
│ │ ✓ │ │ ✗ │ │
│ │ (Read-only) │ │ (NEVER) │ │
│ └──────────────┘ └──────────────┘ │
│ │
│ Your data is used ONLY for: │
│ • Generating responses to your queries │
│ • Providing context for your conversations │
│ • Storing your documents and files │
│ │
│ Your data is NEVER used for: │
│ • Training AI models │
│ • Improving model performance │
│ • Any purpose beyond your direct use │
│ │
└─────────────────────────────────────────────────────────────────┘
Contractual Protection: This commitment is included in our service agreements and can be verified through our audit trails.
Data Isolation & Leakage Prevention
Multiple layers prevent data from leaving your organization:
Tenant Isolation:
- Each organization's data is logically isolated
- Database-level row security policies
- Separate encryption keys per organization (enterprise)
- No cross-tenant data access possible
Network Security:
- VPC isolation in cloud deployments
- Private endpoints available
- IP allowlisting support
- No public internet exposure for data stores
Application Security:
- Input validation on all API endpoints
- Output encoding to prevent injection attacks
- Rate limiting and DDoS protection
- Web Application Firewall (WAF) integration
Data Loss Prevention:
- Configurable DLP policies
- Sensitive data detection and masking
- Export restrictions based on data classification
- Watermarking for exported documents
Deployment Options
Managed Cloud Deployments
Sapience offers fully-managed deployments on major cloud platforms:
- Azure (EU, USA)
- AWS (EU, USA)
- GCP (Middle East)
Why Managed Deployments are Recommended:
- Dedicated security team monitoring 24/7
- Automatic security patches applied within hours
- Regular penetration testing and vulnerability assessments
- Compliance certifications maintained by our team
- Disaster recovery with < 4 hour RTO
On-Premises / Private Cloud
For organizations requiring complete control, Sapience can be deployed entirely within your infrastructure:
Deployment Artifacts Provided:
- Docker Compose for simple deployments
- Helm charts for Kubernetes
- Terraform modules for infrastructure provisioning
- Ansible playbooks for configuration management
- Comprehensive deployment documentation
Global Infrastructure
Sapience operates globally with deployments across multiple continents:
Cloud Platform Experience:
Platform | Regions | Certifications |
Microsoft Azure | US, EU, Australia, UAE, KSA | SOC 2, ISO 27001, HIPAA |
Amazon Web Services | US, Australia | SOC 2, ISO 27001, HIPAA |
Google Cloud Platform | US, EU | SOC 2, ISO 27001, HIPAA |
Web Application Firewall
In addition to the core security framework describe above, managed Sapience deployments have an additional layer of protection from Cloudflare’s Web Application Firewall (CWAF). The CWAF sits in front of your deployment and inspects every HTTP/HTTPS request, blocking malicious traffic while letting legitimate users through. It focuses on application‑layer attacks (like those against forms, logins, APIs), rather than low‑level network traffic. Core purpose: 1. Protects your deployment and the Sapience APIs from common web attacks such as SQL injection, cross‑site scripting (XSS), remote file inclusion, and other OWASP Top 10 threats. 2. Acts as a shield between your deployment and the internet, filtering requests before they reach our servers. How it works: 1. CWAF Inspects each request in real time and compares it against managed rulesets and known attack patterns; suspicious requests are blocked, challenged, or rate‑limited. 2. Uses both signature‑based detection and machine‑learning‑driven detection to catch known exploits and new variations of attacks. Key protections: 1. Managed rules maintained by Cloudflare are continuously updated to cover new vulnerabilities and zero‑day threats. 2. Custom rules let you/us to collectively enforce your own custom logic based on IPs, countries, paths, headers, methods, user agents, etc., including advanced rate limiting for abuse and DDoS‑style behavior at the application layer. Account safety and data protection 1. Exposed credential checks and related features help detect and block account takeover attempts using stolen usernames and passwords. 2. Sensitive data detection and response controls help prevent leakage or abuse of confidential information in your application responses. What this means for our users (you): 1. Your traffic is routed through Cloudflare’s global edge network, which filters bad requests and absorbs attacks with minimal added latency. 2. As a result, your Sapience instance stays available and responsive even during attacks, and your users’ accounts and data are significantly better protected from common web threats
Security Best Practices
When using Sapience with sensitive data, we recommend:
For Administrators:
- Enable MFA for all users with access to sensitive data
- Use the principle of least privilege when assigning roles
- Regularly review audit logs for anomalous access patterns
- Configure session timeouts appropriate for your security policy
- Use IP allowlisting to restrict access to known networks
For Users:
- Use strong, unique passwords (or SSO where available)
- Log out when leaving workstations unattended
- Report any suspicious activity immediately
- Use approved sharing mechanisms rather than external file transfers
- Verify share recipients before sending sensitive data
For Developers (API Integration):
- Store API keys securely (never in source code)
- Rotate API keys regularly
- Use the minimum required scopes for API tokens
- Implement proper error handling to avoid data exposure
- Validate and sanitize all inputs before sending to the API
Frequently Asked Questions
General Security
Q: Is Sapience SOC 2 certified? A: Yes, our managed cloud deployments operate on SOC 2 Type II certified infrastructure. We rely on our vendors for this (Microsoft, Amazon, Google), but pay a premium to ensure it’s true.
Q: How quickly are security patches applied? A: Critical vulnerabilities are patched within 24 hours. Regular security updates are applied weekly.
Data Privacy
Q: Who can access my data? A: Only authenticated users with appropriate RBAC permissions can access your data. Sapience support staff cannot access customer data without explicit permission and audit logging.
Q: Is my data used to train AI models? A: No. We never train any AI models on customer data. Your data is used only to provide the service you requested.
Q: What happens to my data if I cancel? A: You can export all your data before cancellation. After a configurable retention period (default 30 days), all data is permanently deleted.
Compliance
Q: Can Sapience be used for HIPAA-covered data? A: Yes, with appropriate configuration and a signed BAA. Contact us for healthcare-specific deployments.
Q: Is Sapience GDPR compliant? A: Yes. We support all GDPR requirements including data portability, right to erasure, and EU data residency.
Q: Can I get a Data Processing Agreement (DPA)? A: Yes, we provide standard DPAs and can accommodate custom requirements for Sapience Enterprise customers.
Deployment
Q: Can I run Sapience entirely on-premises? A: Yes, Sapience can be deployed on any Docker-compatible infrastructure, including air-gapped environments. This is our Sapience Private Cloud product offering. Please note that it requires a managed services contract with us.
Q: What cloud providers do you support? A: We currently operate on Microsoft Azure, Amazon Web Services (AWS), and Google Cloud Platform (GCP). Other cloud providers can be supported for on-premises deployments. The only “hard” requirement is the ability to run Docker containers, ideally in a Kubernetes clustered environment.
Q: Can I choose my data residency location? A: Yes. For Sapience Enterprise customers, we offer deployments in the US, EU, Australia, UAE, and Saudi Arabia. Additional regions can be provisioned upon request. Lower tiers get routed to infrastructure at our election based on our global footprint and workload at the time of on-boarding.
Contact
For security-related inquiries, please contact:
- Security Team: security@sapience.ai
- Compliance Team: compliance@sapience.ai
- Enterprise Sales: enterprise@sapience.ai
For security vulnerabilities, please report responsibly to: security@sapience.ai
Document Version: 3.8 | Last Updated: 2026.01.18 | Classification: Public