Security & Compliance

Compliance roadmap

Compliance badges in progress

We publish progress toward formal audits while prioritizing customer data protection.

In progress
SOC 2 Type II
Audit planning

Control narratives, evidence collection, and audit partner selection underway.

ISO 27001
Program buildout

Information security policies are being aligned with ISO 27001 requirements.

HIPAA
Customer-driven

HIPAA readiness is staged for healthcare customer engagements.

Penetration testing
Scheduled

Quarterly testing cadence with remediation tracking.

Need evidence today? Email security@coffeebreakai.dev for our security summary.

Data Handling

Workspace data and task context are stored in encrypted Azure services within the United States. Temporary processing data is removed once tasks complete.

Model Providers

Responses are generated with providers such as Azure OpenAI. Only the minimum required data is sent to these services.

Compliance Roadmap

We are pursuing SOC 2 Type II, regular penetration testing, and vendor reviews. See our product roadmap for more details.

Contact

Questions or vulnerability reports? Email security@coffeebreakai.dev.

See our Privacy Policy and Terms of Service for additional information.