Security is a top priority at Braintrust. We implement industry-leading security practices and maintain compliance with key standards to protect your data and ensure the highest levels of security for our platform.
The Trust Center is the central resource for information about Braintrust’s security practices, certifications, and policies. It provides up-to-date details for customers and partners.
Braintrust is SOC 2 Type II compliant. This independent audit confirms that our controls related to security, availability, and confidentiality are operating effectively over time. Associated documentation and reports are available on the Trust Center after signing a mutual NDA.
In addition to the managed cloud service, Braintrust offers a hybrid deployment model. This allows customers to keep data secure within their own environment while taking advantage of Braintrust’s newest UI and platform features.
Braintrust supports HIPAA compliance requirements and maintains the necessary administrative, physical, and technical safeguards for handling protected health information (PHI). For organizations subject to HIPAA regulations, Braintrust can execute Business Associate Agreements (BAAs).To discuss your specific HIPAA compliance needs, contact Braintrust.
For GDPR compliance requirements, Braintrust can execute Data Processing Agreements (DPAs) to satisfy certain data processing obligations. However, for full GDPR compliance, organizations should use Braintrust’s hybrid deployment model with self-hosting in the EU.To discuss your specific GDPR requirements, contact Braintrust.
