We know data security is a top concern when you’re considering Siro. You’re trusting us with sensitive recordings of your sales conversations, and you deserve straight answers about how we protect that data.
In this post, we’ll explain where we stand with security today – including our recent SOC 2 Type 1 compliance milestone – and answer the most common questions we hear about data storage, privacy, and protection.
One of the biggest steps we’ve taken is achieving SOC 2 Type 1 compliance. There are two levels of SOC 2 compliance: Type 1 and Type 2.
Why does this matter? It means Siro is not only saying we take security seriously – we’ve had a third-party auditor put us under the microscope to prove it. Achieving Type 1 compliance is a significant milestone for us as a growing company, and it paves the way for the more rigorous Type 2 certification. In fact, we’re already hard at work on the SOC 2 Type 2 audit process. Our goal is to reach full SOC 2 Type 2 compliance as soon as possible, demonstrating that our security controls aren’t just documented, but are actively working day in and day out.
Your recordings are stored securely in the cloud – specifically on Google Cloud Platform’s central US region servers with enterprise-grade security. We chose Google Cloud as our hosting partner because of its robust security and reliability. Your data isn’t sitting on a rep’s phone or a local server in someone’s closet; it’s in a world-class data center with 24/7 security staff, biometric locks, and redundant systems to protect against outages.
A few key points about storage:
The bottom line is your recordings are stored in a secure, central cloud repository that’s protected to the highest standards. We’ve taken great care to ensure that from the moment a conversation is recorded, it’s handled safely and only stored in environments we trust.
This is a great question, and one we love answering because it hits at the heart of trust. In short: We use your data only to improve your experience with Siro – and nothing else. It’s your data, and we treat it that way. That means we do not sell your data, share your recordings with third parties, or use your content to train some global AI model that benefits others.
Here’s exactly how we handle your data and our AI:
To put it simply, your data is used to help you, full stop.
Yes – we understand that within your recordings there may be sensitive information (like customers’ personal details, payment info, or anything confidential), and not everyone in your organization should have the same level of access. Siro offers tools for both automatic data redaction and robust permission controls to keep sensitive info under wraps.
Data Redaction: We’ve built automatic redaction capabilities into Siro’s transcription and analytics process. This means our system can detect certain types of sensitive data – for example, credit card numbers, phone numbers, emails, or other personally identifiable information – and redact them from transcripts and audio where appropriate. You might see a transcript line in Siro that shows **** or a placeholder instead of the actual credit card number that was spoken. The goal is to prevent sensitive personal data from ever being exposed or stored in plain text. Redaction helps protect privacy for your customers and your business, reducing risk if someone were to access a transcript.
Permissioning & Access Controls: Siro gives you granular control over who can access recordings and data within your team. In Siro, you can define user roles and set permissions accordingly. For example:
These permission settings are flexible, so you can align Siro with your company’s policies. Need a custom setup? Our team can work with you to configure it properly.
In summary, we redact sensitive info to protect privacy, and we give you controls to limit access to your data. You decide who in your organization sees what, and our system is built to enforce those rules. We’ve got your back in keeping confidential information confidential.
Absolutely. You are in control of your data, and that includes the right to delete it. If at any point you need a recording (or any piece of data) deleted, we will delete it – no questions asked. We also have features that allow you to mark a conversation as private – in this instance, you can track that the conversation occurred, but remove the ability for the broader team to view the recording without deleting it for good.
Our philosophy is that customer data belongs to the customer. If you decide to stop using Siro, you can request a full deletion of all your recordings and associated data from our systems. We have processes in place to ensure that when a deletion request is made, the data is securely removed from our live databases and any active storage. We also purge it from backups and archives in accordance with our retention policies, so it’s completely gone in a reasonable timeframe. In short, “delete means delete” with Siro – we won’t hold onto data that you’ve asked us to remove.
Between our redaction features, permission controls, and deletion support, we aim to give you full sovereignty over your data. From creation to storage to deletion, you call the shots. Our role is to safeguard the data and respect your decisions about it at every stage.
Security and privacy aren’t one-time achievements – they are an ongoing commitment. Achieving SOC 2 Type 1 compliance is an exciting milestone for Siro, but it’s just one step on our journey. We’re using it as a springboard toward SOC 2 Type 2 and continuously strengthening our security posture. Our customers (you) can expect us to keep raising the bar on data protection as we grow.
Siro is the intelligence platform for in-person sales, and secure data is what makes intelligence possible. Our customers trust us to help them see what’s really happening in the field, and they count on us to protect every second of that insight.