Merlin

Product details
ShoSho
ShoPLUS
Dec 2, 2024

Q: SECURITY: where are user files and user queries stored?

I was wondering if you could shed some light on the questions of security:

1. Where are our (user) queries stored? We can obviously access the history of our queries, so my question is about this aspect: where are the queries (user questions and inputs, and AI responses) stored?

2. In which format is the history data (user queries and AI responses) stored? Is it encrypted? How is it encrypted?

3. Who can access user data (user queries, user uploaded files, AI responses)?

4. Who can decrypt user data (user queries, user uploaded files, AI responses)?

5. Where are user-uploaded files stored and for how long?

6. Can users delete uploaded files? If so, what happens after that with the files? Do files get deleted from wherever they are stored, including copies in the cloud providers?

7. Can Merlin employees read or copy chats?

Thanks!

Founder Team
Sonam_Merlin

Sonam_Merlin

Edited Dec 6, 2024

A: 1. We use Google Cloud to store all user data and for our backend.
2. The data is encrypted at rest as per Google Firebase.
3 & 4. The access to user data is provided only to select team members working to build features and tooling on top of it on need basis.
5. User-uploaded files are stored on Google Cloud storage and currently is set to delete every 12 months.
6. We are working on a functionality to enable users to delete files themselves. Currently, they can only be manually deleted by us.
7. Only select team members who need to access data for building features can access the data. Lastly, we are SOC-2, GDPR compliant so all your data is secured.

Share
Helpful?
11
Log in to join the conversation
Log in
ShoPLUS

Thank you for that brief reply that didn't answer my question.

SOC-2 compliance requires tests & independent on-site audits & attests.

GDPR compliance requires (among other requirements):
- transparency, including "transparency with data subjects about how their data is used and how long it will be stored";
- demonstrated compliance.

Could you please answer seriously and corroborate with data?

Founder
Sonam_Merlin

Hey, just responded to all your queries in detail. Feel free to reach out if you have any follow-up questions, we'll be happy to answer it all :)

Silke_hautquartier

Could you please respond here - the whole European Market is interested in your answer. Thank you!

Related questions
View product details