Security & Data Protection
Your team's coaching data is protected by enterprise-grade security infrastructure and comprehensive data protection controls.
Built on Trusted Infrastructure
Aurora Coach combines certified enterprise infrastructure providers with our application-layer security controls.
Infrastructure Security
Heroku Enterprise Platform
- ✓ SOC 2 Type II Certified
- ✓ ISO 27001/27017/27018
- ✓ PCI DSS Level 1
- ✓ 24/7 Security Monitoring
AI Security
Anthropic Claude AI
- ✓ SOC 2 Type II Certified
- ✓ ISO 27001 Certified
- ✓ ISO/IEC 42001 (AI Systems)
- ✓ Constitutional AI Safety
Security Features
Comprehensive security controls designed to protect your coaching data.
Data Encryption
Industry-standard encryption for data in transit and at rest
Access Control
Multi-tenant isolation with role-based access controls
Authentication
Strong password hashing with breach detection and secure session management
API Security
Rate limiting and protection against common web vulnerabilities
Security Monitoring
Tamper-evident audit logging with comprehensive event monitoring
OWASP Protection
Defense-in-depth architecture following OWASP security recommendations
Data Protection & Compliance
🌍 GDPR Compliance
Full compliance with EU data protection regulations, including data subject rights and privacy by design principles.
🔒 Data Minimization
We collect only the data necessary for coaching insights, following privacy-first principles.
📍 Data Residency
EU-based data processing with clear data handling policies and geographic controls.
Heroku is a trademark of Salesforce, Inc. Anthropic and Claude are trademarks of Anthropic, PBC. All trademarks are the property of their respective owners.