Security & Compliance
Table of contents Show Hide
Security & Compliance
GoSmarter is built on Microsoft Azure and designed around a simple principle: keep customer data protected through layered controls, clear accountability, and transparent assurance.
This trust centre provides a high-level summary of our security and privacy approach. Detailed technical and assurance material is available on request under NDA.
At a glance
- Data residency: Core persistent data is hosted in the UK, with selected processing in EU regions where required.
- Identity and access: Authentication and authorisation controls are enforced across the platform.
- Encryption: Data is protected in transit and at rest using standard Azure controls.
- AI data handling: Customer data is not used to train provider AI models.
- Security operations: Monitoring, logging, and incident response processes are in place.
Topics
- Data Residency: Where your data is stored and processed
- AI Security: How AI processes your documents and protects your data
- Hosting & Infrastructure: The Azure platform and services we run on
- Encryption: How data is encrypted at rest and in transit
- Access Control: Identity, authentication, and authorisation
- Frontend Security: Browser-level security controls
- Incident Response: How we handle security incidents
- Privacy & Data Protection: GDPR and data processing practices
- Certifications & Attestations: Standards and how to request evidence
- Compliance Standards: Key standards we align with and how they apply
- FAQ: Common security questions from buyers
Request evidence
We’re happy to support your security review process. We can provide:
- A security and compliance overview pack
- Data Processing Agreement (DPA) information
- Relevant Azure certification and assurance references
- Additional technical detail under mutual NDA
- A compliance call with our team
Email us, contact us online, or book a compliance call to request the NDA pack.