Security & Trust

Your performance data is sensitive. We treat it that way.

Our Security Principles

Encryption Everywhere

All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Your performance data never travels unprotected.

Processed, Never Viewed

Your data is processed by AI to provide insights, but never manually reviewed by our team. We access your content only to deliver the service — never for other purposes.

No AI Training on Your Data

We do not use your data to train AI models. Your performance reviews and feedback never become training data. Period.

Delete Anytime

Request full data deletion at any time. We will remove all your data from our systems within 30 days, with confirmation.

Human-DrivenAI-Assisted

Steorra uses AI to surface insights and reduce manual work - but humans always make the decisions. AI suggests, you decide. Performance reviews, promotions, and career conversations remain human-to-human.

AI extracts signals from your work - it doesn't make judgments
You review and weight every piece of evidence
No automated decisions about people's careers

Infrastructure & Controls

Cloud Infrastructure

Hosted on industry-leading cloud providers
EU and US data residency options
Automatic failover and redundancy
99.9% uptime SLA target

Application Security

Regular dependency audits
Automated vulnerability scanning
Secure development practices
No secrets in code or logs

Access Control

Google OAuth (SSO) — we never store passwords
Role-based access control
Audit logs for sensitive actions
Session management and timeout

Compliance & Documentation

GDPR Ready

Data processing agreements available. Right to access, rectification, and deletion honored.

SOC 2 Type II

In Progress

Currently in progress. Contact us for our security practices document.

Privacy Policy

Transparent data handling practices.

View document →

Terms of Service

Clear terms for using Steorra Suite.

View document →

Security Questions?

We're happy to answer security questionnaires, provide our security practices document, or discuss your specific requirements.

security@steorra.one

Last updated: January 26, 2026

Security & Trust

Your performance data is sensitive. We treat it that way.

Our Security Principles

Encryption Everywhere

All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Your performance data never travels unprotected.

Processed, Never Viewed

Your data is processed by AI to provide insights, but never manually reviewed by our team. We access your content only to deliver the service — never for other purposes.

No AI Training on Your Data

We do not use your data to train AI models. Your performance reviews and feedback never become training data. Period.

Delete Anytime

Request full data deletion at any time. We will remove all your data from our systems within 30 days, with confirmation.

Human-DrivenAI-Assisted

AI extracts signals from your work - it doesn't make judgments
You review and weight every piece of evidence
No automated decisions about people's careers

Infrastructure & Controls

Cloud Infrastructure

Hosted on industry-leading cloud providers
EU and US data residency options
Automatic failover and redundancy
99.9% uptime SLA target

Application Security

Regular dependency audits
Automated vulnerability scanning
Secure development practices
No secrets in code or logs

Access Control

Google OAuth (SSO) — we never store passwords
Role-based access control
Audit logs for sensitive actions
Session management and timeout

Compliance & Documentation

GDPR Ready

Data processing agreements available. Right to access, rectification, and deletion honored.

SOC 2 Type II

In Progress

Currently in progress. Contact us for our security practices document.

Privacy Policy

Transparent data handling practices.

View document →

Terms of Service

Clear terms for using Steorra Suite.

View document →

Security Questions?

We're happy to answer security questionnaires, provide our security practices document, or discuss your specific requirements.

security@steorra.one

Last updated: January 26, 2026