Security and compliance

Learn how Gan.ai protects your data. Explore our security practices and compliance standards for safe, reliable AI solutions.

Key pillars of Gan.AI’s security and compliance program include SOC 2 Type II certification, encrypted data transmission, robust access control, and ongoing security monitoring.

Infrastructure & Network Security

  1. Cloud Architecture

  • Gan.AI’s system is hosted on major cloud providers, including AWS, Azure, Vercel, and Render, depending on region and service.

  • Use of Virtual Private Clouds (VPCs) with firewalls restricts internal access to only authorized systems.

  1. Encryption & Transport Security

  • All data in transit is encrypted via HTTPS/TLS.

  • Sensitive data at rest is protected using strong encryption practices.

  1. Access Controls

  • Strict role-based access ensures only authorized team members can access sensitive systems.

  • Continuous monitoring of access controls and system health is maintained via a security monitoring tool (e.g., Sprinto).

  1. Vulnerability Management

  • Gan.AI has documented policies and procedures for managing technical vulnerabilities.

  • They maintain an incident response plan to handle security events or breaches.

  1. Disaster Recovery

  • Disaster recovery measures are defined to ensure system resilience in case of major outages or incidents.

Organizational Security & Governance

  • Staff Training: Employees receive regular security awareness training to keep up with the latest security practices.

  • Information Security Program: Continuous review and monitoring of the information security program ensures that Gan.AI stays compliant and up to date with best practices.

  • Data Governance: There are documented policies around data handling, access, and protection.

Compliance & Certifications

  • SOC 2 Type II Certification: Gan.AI holds a SOC 2 Type II certification, which validates that they has effective controls in place around security, availability, confidentiality, and data integrity.

  • Privacy Compliance:

  1. Gan.AI’s Privacy Policy outlines how personal data is collected, used, stored, and shared.

  2. They operate in compliance with relevant data protection laws (e.g., for processing personal data).

AI Ethics & Responsible Use

  • Gan.AI has an AI Ethics policy emphasizing transparency, consent, and respectful use of synthetic content.

  • Key commitments include:

  1. Gaining explicit consent before using someone’s face, voice, or likeness.

  2. Clearly disclose when content is AI-generated (synthetic).

  3. Ensuring data privacy and minimizing misuse of personal data.

User Data & Privacy

  • Gan.AI collects personal data (e.g., name, email, voice samples, video) to operate its services.

  • They process user-uploaded content (audio, video, images) and associated metadata for personalization, but do not use it to establish identity or profile users beyond the service requirement.

  • They also collect device data, usage data, and browser data to improve service, with respect for user privacy and applicable data protection laws.

  • Security measures include both technical and organizational controls to protect personal data against unauthorized access or breaches.

Incident Response & Breach Handling

  • In the event of a data breach, Gan.AI follows its Incident Response Plan to quickly contain and mitigate risks.

  • They have documented procedures to notify affected users and regulators as needed, in compliance with laws and contractual obligations.

  • Users are encouraged to report suspected security issues via support channels.

User Responsibilities & Best Practices

To help maintain security and compliance, users of Gan.AI should:

  • Use strong, unique passwords and enable two-factor authentication (if available).

  • Protect access credentials — do not share your login details.

  • Review and sanitize any personal or sensitive data before uploading (especially voice or video samples).

  • Stay informed of Gan.AI’s policy updates (security, privacy, terms of service).

  • Report any suspicious activity or security concern via Gan.AI’s support channels.

In summary, Gan.AI combines advanced technical safeguards, strict organizational policies, and robust compliance measures to ensure the highest levels of security, privacy, and responsible AI use. By following best practices and remaining vigilant with personal data, users can confidently leverage the platform to create personalized videos while knowing their information is protected and handled ethically.

PreviousSupportNextFAQs

Last updated