SUDO AI StudioSecurity Centre
Data privacy, storage, and compliance policies governing your SUDO AI Studio environment.
SUDO AI Studio is built on AWS and inherits AWS security certifications including SOC 2 Type II, ISO 27001, and PCI DSS. For a full security assessment or custom data processing agreements, contact security@sudoconsultants.com.
Data Privacy Policy
All customer data is processed in accordance with GDPR, CCPA, and applicable regional privacy regulations. Personal information is never used to train AI models without explicit consent.
Document Storage Policy
Uploaded documents are encrypted at rest using AES-256 and stored in isolated S3 buckets per customer. Documents are automatically deleted 90 days after project closure.
AI Processing Policy
AI analysis is performed using Amazon Bedrock models. Prompts and outputs are not retained by model providers. Processing occurs within your selected AWS region to satisfy data residency requirements.
Access Control
Role-based access control (RBAC) governs all project data. Only authenticated users with explicit project membership can view or modify project content. Admin roles are audited quarterly.
Encryption Details
All data in transit is encrypted using TLS 1.3. Data at rest uses AES-256 encryption via AWS KMS with customer-managed keys available on Enterprise plans. Key rotation is enforced annually.
Audit Log Access
Comprehensive audit logs capture all data access, modification, and export events. Logs are retained for 12 months and available to account administrators via the API or dashboard export.