Sligo AI - Security

SpendHQ Makes Strategic Investment in Sligo.ai

Read here

SpendHQ Makes Strategic Investment in Sligo

Platform

Solutions

Services

Company

Request Demo

Security and privacy at Sligo AI

Security and privacy aren’t add-ons — they’re core to our platform.
From certifications to compliance, Sligo.ai ensures your data stays safe and sovereign.

Sligo AI meets the AICPA SOC requirements for customer data management.

We fully comply with the
EU GDPR to safeguard personal data and privacy.

Sligo AI meets the international standard for information management security.

Sligo AI adheres to HIPAA requirements, ensuring protection for healthcare data.

Transparent by design.

We make it easy to understand how Sligo AI operates — from platform agreements to model transparency and vendor relationships.

Security assessments

Our latest audit reports and penetration test results.

Platform agreements

Our terms and policies, made clear
and accessible.

Sub-processors

Our trusted partners who support
our platform operations.

FAQs

Answers to common questions on security, privacy, and compliance.

Data protection at every layer.

Your data stays secure in motion, at rest, and in use – with encryption and controls built into the platform.

Data at rest

All customer data, including S3 buckets, is encrypted with field-level protections. Encryption applies before data ever hits the database, preventing access to sensitive information.

Data in transit

All data in motion uses TLS 1.2+ with features like HSTS for maximum security. TLS keys and certificates are managed by AWS and deployed via load balancers.

Secret management

Encryption keys are stored in AWS KMS and secured in HSMs, preventing direct access by individuals. Application secrets are encrypted with AWS Secrets Manager and tightly controlled.