Platform 01 Solutions 02 Pricing 03 Security 04 About 05 Contact 06
Request Access Sign In

Security

Security is not a feature. It is the foundation.

SynthVault was architected for environments where a single exposed record is a reportable event. Every layer — infrastructure, data handling, and privacy math — is built to that standard.

01 Compliance Certifications

Audited. Certified. Contractual.

SOC 2 Type II

Certified

HIPAA BAA

Available

GDPR DPA

Available

ISO 27001

In Progress

02 Data Handling

Your data is never our data.

SynthVault's architecture makes retention impossible by default. Source data flows through ephemeral compute and is gone the moment the job completes.

  • Zero persistence — source data never persists in SynthVault infrastructure; cloud deployments use ephemeral containers.
  • On-premise deployment — SynthVault runs entirely within your VPC or data center.
  • Zero-training policy — customer data is never used to improve base models. Contractually guaranteed.
  • Audit logs — immutable, exportable, with 7-year retention.
03 Privacy Guarantees

Privacy you can prove, not just promise.

ε-δ

Differential Privacy

Configurable epsilon-delta budgets applied during training, with per-dataset accounting and spend tracking.

k / ℓ

K-Anonymity & L-Diversity

Automated testing against anonymity thresholds, with failures flagged before export is permitted.

MIA

Membership Inference Resistance

Every dataset is attacked before release. If an adversary can tell who was in the training set, it doesn't ship.

AD

Attribute Disclosure Testing

We measure whether sensitive attributes can be inferred from synthetic records — and report the bounds.

RPT

Automated Privacy Reports

Every generation job produces an exportable privacy report your compliance team can file directly.

LIN

Full Lineage

Synthetic-to-source mapping and reproducibility logs for every record batch ever generated.

04 Infrastructure Security

Enterprise-grade from the metal up.

AWS / GCP / Azure

Deploy in your preferred cloud region, or bring SynthVault fully on-premise behind your own firewall.

VPC Peering & Private Link

Traffic never touches the public internet. Private connectivity between your VPC and SynthVault control plane.

AES-256 + TLS 1.3

Encryption at rest and in transit, with customer-managed keys available on Enterprise plans.

Quarterly Penetration Testing

Independent third-party firms test the platform every quarter. Executive summaries available under NDA.

Read the full security whitepaper.

Architecture, threat model, DP implementation, and audit methodology — 24 pages, written for CISOs.

Security inquiries: security@synthvault.io