Loading●Trust
CIOC is sold to security teams. That means our own security posture is held to the same standard we hold our customers' to. Read-only by default. Strict isolation. No training on your data. SOC 2 Type I in progress.
Two postures — one for pilots, one for production — both designed to satisfy procurement on day one. No agents. No raw data egress. No surprises in the security questionnaire.
Procurement reviews focus on the questions a vendor is most likely to dodge. These are our answers to those questions, written before they're asked.
Read-only access only. No agents in your environment. No raw logs leave your perimeter. Validate value over 30 days before any deeper integration.
Production integration is least-privilege by design. Only enriched, normalized findings cross the boundary into CIOC — never raw logs, telemetry, or sensitive payloads.
Strict per-customer isolation, enforced at multiple layers. Cross-tenant access is architecturally impossible — every operation is verified against tenant identity before it executes.
Your credentials, API keys, and tokens are encrypted, segregated from application data, and rotated on a defined schedule. Customer-managed keys available for enterprise.
CIOC processes only enriched findings and metadata — never raw logs. Our AI providers are contractually bound: your data is never used to train any foundation model, ours or theirs. Aggregated, de-identified usage statistics only.
Modern cloud-native infrastructure with defense-in-depth. TLS 1.3 in transit, AES-256 at rest. Daily backups with tested restore. Continuous monitoring with one-year audit log retention. Annual penetration test by an independent firm.
Procurement teams reading questionnaires under NDA get the full security profile — pen-test summary, sub-processor list, DPA, vendor management policy, incident response plan. Email sherry@cioc.io and the packet is on the way the same business day.
A 30-day pilot with read-only access. Your security review runs in parallel. Walk away or convert on day 30.