Trust Center
EvalOps commitments to security, privacy, and reliability
We operate EvalOps for teams shipping production AI in regulated, high-trust environments. Explore our security posture, compliance roadmap, and reliability practices—all in one place.
Security
Encryption in transit and at rest, workspace isolation, and support for customer-managed keys across dedicated and private cloud deployments.
Compliance
SOC 2 Type II in progress; HIPAA, GDPR, and industry-specific attestations available with dedicated environments and shared documentation packages.
Privacy
Field-level redaction, regional data residency, configurable retention, and Data Processing Agreements for regulated workloads.
Reliability
Multi-region SaaS with 99.5%+ uptime SLAs, dedicated environments for enterprise, and Private Cloud with joint operations and incident response.
Security & compliance resources
Data handling FAQ
Where is my data stored?
Managed SaaS operates in the US (East/West). Dedicated and Private Cloud engagements can run in the EU, APAC, or customer-provided regions with sovereign controls.
How long do you retain telemetry?
Professional retains traces for 30 days by default. Enterprise and Private Cloud offer customizable retention policies, down to “customer controlled” for regulated workloads.
Can we bring our own keys?
Yes. Dedicated and Private Cloud deployments integrate with AWS KMS, Azure Key Vault, or HashiCorp Vault for customer-managed encryption keys.
Do you process PII or secrets?
EvalOps only processes data you send. We provide field-level redaction and secret scrubbing before telemetry leaves your network. Security assessments verify controls before production use.
Talk to our trust team
Need a custom security questionnaire, risk assessment, or to align on deployment controls? Let us know and we’ll schedule time with the right experts.
Contact trust team→