ConversaConversa
Security & privacy

Your data stays yours.
Always.

Conversa is built from the ground up to keep your business data private, protected, and under your control.

Private by design

Only your team can see your data. No other customer — and no one at Conversa — can read your conversations or business information.

Protected end to end

Every piece of data is encrypted in transit and at rest using enterprise-grade security standards. Your credentials are never stored in plain text.

Never used to train AI

Your data is never used to train our models — or any third-party model. Full stop.

How we protect you

The details, without the jargon

What we actually do to keep your data safe, written so a non-engineer can understand it.

Your team, your data

Every customer gets a fully separated space for their data. Nothing ever crosses the line between customers — your information is only visible to people you invite.

Strong encryption everywhere

Data is encrypted whenever it moves between you and us, and encrypted again when we store it. It's the same standard major banks use.

Passwords are never readable

We don't store your password — we store a mathematical fingerprint of it. Even if someone stole our database, they couldn't read it.

Hosted on trusted infrastructure

Conversa runs on enterprise cloud infrastructure with the same uptime and security guarantees as the software you already trust.

Read-only by default

When you connect a tool like HubSpot or Salesforce, we default to read-only access. Write permissions only get granted when you explicitly enable them.

Compliance

We take compliance seriously. Here's where we stand today and what's coming next.

Today

GDPR-ready

Full data export and deletion on request. Clear data handling policies. Serving customers in the EU and UK.

In progress

SOC 2 Type II

Actively preparing for audit. We already follow the controls SOC 2 requires; we're formalizing them with a third-party.

Coming

Enterprise SSO

Single sign-on via your identity provider, data retention controls, and a signed DPA — rolling out with the Enterprise plan.

Found something that worries you?

We take every report seriously. If you think you've found a security issue — big or small — we'd love to hear from you. We respond within one business day.

[email protected]

Questions about security?

Our team is happy to walk you through our security practices or share our latest compliance documentation.