Vivollo

Legal

Security

How Vivollo protects your data — encryption, tenant isolation, access control, PII handling and responsible disclosure.

Last updated: June 27, 2026Effective: June 27, 2026

Security is part of how Vivollo is built, not an afterthought. This page summarises the practices we follow to protect your data and your customers' conversations. For how we handle personal data specifically, see the Privacy Policy.

1. Encryption

Traffic between you, your customers and Vivollo is encrypted in transit with TLS. Data at rest is encrypted using industry-standard algorithms managed by our infrastructure provider.

2. Tenant isolation

Each customer's data is logically isolated so that one tenant can never read or reach another tenant's data. Access paths enforce this boundary at the application and data layers.

3. Access control

Access to production systems is limited to authorised personnel on a least-privilege basis, protected by strong authentication. Administrative actions are logged.

4. Personal data and guardrails

We minimise the personal data the agent needs, and support redaction of sensitive information (PII) in conversations. Guardrails constrain what the agent can access and which actions it can take, so automation stays within the limits you set.

5. Infrastructure and sub-processors

Vivollo runs on [cloud provider] infrastructure in [region]. We use a small set of vetted sub-processors under data-protection agreements; a current list is available on request. See the Privacy Policy for how data is shared.

6. Monitoring and resilience

We monitor the platform for availability and abuse, keep regular backups, and maintain processes to detect, respond to and recover from incidents. In the event of a personal-data breach, we notify affected customers and authorities as required by applicable law.

7. Compliance

Vivollo is designed to support compliance with the Turkish KVKK and to be GDPR-ready. Specific certifications and audit reports are [in progress — to be listed here].

8. Responsible disclosure

If you believe you've found a vulnerability, please email [security@vivollo.com] with details so we can investigate. We ask that you give us reasonable time to remediate before public disclosure, and we won't pursue good-faith research that respects our users' privacy and data.

9. Contact

Security questions: [security@vivollo.com].

All legal documents