# Security & Compliance

> GoSmarter's security, compliance, and data protection practices - built on Microsoft Azure with UK and EU data residency.

**URL:** https://www.gosmarter.ai/docs/content/security-compliance/

**Date:** 0001-01-01

---


## Security & Compliance

GoSmarter is built on Microsoft Azure and designed around a simple principle: keep customer data protected through layered controls, clear accountability, and transparent assurance.

This trust centre provides a high-level summary of our security and privacy approach. Detailed technical and assurance material is available on request under NDA.

### At a glance

- **Data residency**: Core persistent data is hosted in the UK, with selected processing in EU regions where required.
- **Identity and access**: Authentication and authorisation controls are enforced across the platform.
- **Encryption**: Data is protected in transit and at rest using standard Azure controls.
- **AI data handling**: Customer data is not used to train provider AI models.
- **Security operations**: Monitoring, logging, and incident response processes are in place.

### Topics

- [Data Residency](data-residency): Where your data is stored and processed
- [AI Security](ai-security): How AI processes your documents and protects your data
- [Hosting & Infrastructure](hosting): The Azure platform and services we run on
- [Encryption](encryption): How data is encrypted at rest and in transit
- [Access Control](access-control): Identity, authentication, and authorisation
- [Frontend Security](frontend-security): Browser-level security controls
- [Incident Response](incident-response): How we handle security incidents
- [Privacy & Data Protection](privacy): GDPR and data processing practices
- [Certifications & Attestations](certifications): Standards and how to request evidence
- [Compliance Standards](compliance-standards): Key standards we align with and how they apply
- [FAQ](faq): Common security questions from buyers

### Request evidence

We're happy to support your security review process. We can provide:

- A security and compliance overview pack
- Data Processing Agreement (DPA) information
- Relevant Azure certification and assurance references
- Additional technical detail under mutual NDA
- A compliance call with our team

[Email us](mailto:talktous@gosmarter.ai), [contact us online](https://gosmarter.ai/contact), or [book a compliance call](https://calendly.com/gosmarter-demo) to request the NDA pack.