Every interview is encrypted end-to-end. Every consent is timestamped. Every record is replayable for seven years. Here's how.
AES-256 at rest. TLS 1.3 in transit. Key management via dedicated KMS, with optional customer-managed keys (CMEK) for enterprise accounts.
Every interviewee sees an AI-interview disclosure before they begin. Consent is timestamped and stored immutably alongside the transcript.
Every interview and every system event is replayable for seven years. Built for the long retention windows regulated industries require.
US, EU, or APAC region pinning available for enterprise. GDPR-compliant by default. HIPAA-ready paths for clinical and HR work.
Interview recordings and transcripts are encrypted with AES-256 at rest. All data in transit uses TLS 1.3. Key management is handled via a dedicated KMS. Enterprise customers can opt into customer-managed encryption keys (CMEK).
Role-based access control (RBAC) applies across all account tiers. Enterprise accounts support SSO/SAML and configurable session policies. Every administrative action is logged in an immutable audit trail.
SOC 2 Type II audit is in progress (expected Q3 2026). We are GDPR-compliant by default, with DPA available at /dpa. HIPAA-ready data paths are available for healthcare and clinical customers. Proctoring features are designed to be BIPA-aware.
We operate sub-processors listed at /subprocessors. We take responsibility for their compliance under our DPA.
If you've found a security issue, please email security@anyinterview.to with details. We acknowledge all reports within 24 hours and commit to a remediation timeline for confirmed issues.
Talk to our team. We'll send documentation, answer specific questions, or schedule a technical review.