Skip to content
Agent ID

Security & Compliance

Can you trust us with your data?

Agent ID is designed for regulated environments where legal accountability, technical rigor, and operational transparency are mandatory.

Request Data Processing Agreement (DPA)View System Status

Data Privacy Framework

GDPR role clarity by design.

Data Processor

Within our SDK and API services, we operate as a processor. We secure data flows, apply PII scrubbing, and maintain encrypted logging under customer instruction.

Data Controller

We act as controller only for customer account administration, dashboard analytics, and billing operations required to deliver the service.

Data Residency

Regional deployment options include EU-only hosting for teams requiring strict GDPR-aligned data locality and governance controls.

Technical Security

Infrastructure hardened for enterprise AI traffic.

Encryption by default

AES-256 at rest and TLS 1.3 in transit across APIs, logs, and operational telemetry.

Forensic-Grade Envelope Encryption

Data is protected at rest using AES-256 Envelope Encryption. Runtime processing occurs in secure ephemeral memory, ensuring sensitive data is never persisted in plain text.

WORM audit trail

Immutable write-once logs preserve forensic-grade records that cannot be retroactively edited or deleted.

Compliance Standards

Mapped to the controls your auditors ask for.

  • EU AI Act and ISO 42001 (AIMS) evidence generation for AI management system controls and operational audit trails.
  • US Federal AI policy mapping, including Executive Order 14319 and OMB Memorandum M-26-04 procurement governance workflows.
  • Colorado SB24-205 support for high-risk AI logging, oversight, and evidence retention.
  • California SB 53 support for frontier model transparency and safety documentation workflows.
  • California AB 2013 support for training data transparency records.
  • Texas HB 149 support for risk-based governance and automated decision evidence mapping.
  • Infrastructure aligned to SOC 2 Type II controls for security, availability, and traceability.
  • Data center and operational controls aligned with ISO 27001 requirements.