Call Stream AI maintains the highest standards of privacy and data security through strict adherence to major regulatory frameworks. Our compliance program encompasses the Telephone Consumer Protection Act (TCPA), General Data Protection Regulation (GDPR), Canadian Anti-Spam Legislation (CASL), and Payment Card Industry Data Security Standard (PCI DSS).
Enterprise-Specific AI Solutions:
Call Stream AI provides each enterprise client with their own dedicated AI bot, ensuring complete individualization and data security. All AI learning and data usage are strictly segmented and owned by the client, with no cross-sharing of client-specific information or learned behaviors. We maintain separate custom knowledge bases for each client and implement proprietary US-based cascading Large Language Models (LLMs) with Retrieval-Augmented Generation (RAG) capabilities to ensure secure, efficient data access.
Personal Information Protection:
Our comprehensive security approach includes automatic detection and masking of all Personally Identifiable Information (PII). We employ industry-standard encryption using AWS KMS (Key Management Service) with AES-256 encryption for data at rest and TLS 1.2+ for data in transit, alongside PowerBI's built-in encryption protocols for business intelligence data. Regular security audits are conducted to detect and mitigate potential risks, while role-based access controls ensure that only authorized personnel can access sensitive information.
Secure Data Transfer:
Our secure data transfer infrastructure includes RESTful API integration with OAuth 2.0 authentication and rate limiting. We utilize the UiPath RPA framework for secure legacy system integration, alongside SFTP/FTPS protocols for secure file transfers. The AWS Transfer Family manages file transfer workflows, while end-to-end encryption using TLS 1.2+ protects all data exchanges.
Integration Standards:
Our enterprise integration framework incorporates robust API security measures, including OAuth 2.0, JWT tokens, and API key management. The UiPath RPA Orchestrator ensures secure process automation, while AWS API Gateway provides comprehensive API management and security. PowerBI REST API integration enables secure data analytics capabilities across our platform.
Data Management & Retention:
Our data management strategy incorporates regular data purging schedules to minimize unnecessary storage, coupled with automated PII detection and masking for enhanced privacy. We maintain secure data disposal protocols and comprehensive audit trails that track all data access and modifications.
Access Controls:
System access is protected through multi-factor authentication (MFA) requirements, with regular access reviews ensuring ongoing compliance with security protocols. We maintain detailed logging of all system interactions and implement immediate access revocation for unauthorized or inactive users.
Voice AI Security:
Our voice AI platform features encrypted voice data transmission and real-time API integration for seamless data exchange with enterprise business systems. We maintain secure conversation logging and automated sensitive information detection and masking throughout all voice interactions.
Chat & Text Security:
All chat communications are protected by end-to-end encryption, with secure message storage implementing encryption at rest. Our platform includes automated sensitive data redaction and secure chat transcript management to ensure comprehensive protection of all text-based communications.
Continuous Oversight:
We maintain 24/7 security monitoring for breach detection and prevention, complemented by regular compliance audits and automated security assessments. Our incident response program includes immediate breach notification procedures to ensure rapid response to any security events.
Training & Policy Updates:
Our security program includes regular security training for all employees, with continuous compliance updates reflecting regulatory changes. We maintain comprehensive documentation of security protocols and conduct regular policy reviews to address emerging threats.For questions or concerns regarding this policy, please contact our Security Team at security@callstreamai.com