Compliance & Regulations
Jaydus meets the highest standards for data protection, privacy, and security compliance across global jurisdictions.
SOC 2 Type II
Independently audited for security, availability, processing integrity, confidentiality, and privacy controls.
GDPR
Full compliance with European General Data Protection Regulation for data privacy and protection.
CCPA
California Consumer Privacy Act compliance for California residents' privacy rights.
PIPEDA
Personal Information Protection and Electronic Documents Act compliance for Canadian users.
ISO 27001
Information security management system certification (in progress).
HIPAA Ready
Healthcare compliance features available for enterprise customers.
Data Protection Regulations
General Data Protection Regulation (GDPR)
Jaydus is fully compliant with GDPR requirements for processing personal data of EU residents. Our compliance includes:
- Lawful basis for processing personal data
- Data subject rights implementation (access, rectification, erasure, portability)
- Privacy by design and by default
- Data Protection Impact Assessments (DPIAs)
- Appointment of Data Protection Officer (DPO)
- Breach notification procedures
California Consumer Privacy Act (CCPA)
We provide California residents with comprehensive privacy rights including:
- Right to know what personal information is collected
- Right to delete personal information
- Right to opt-out of the sale of personal information
- Right to non-discrimination for exercising privacy rights
- Right to data portability
Personal Information Protection and Electronic Documents Act (PIPEDA)
For Canadian users, we comply with PIPEDA requirements including:
- Consent for collection, use, and disclosure of personal information
- Limiting collection to necessary purposes
- Safeguarding personal information with appropriate security measures
- Providing access to personal information upon request
Industry Standards & Certifications
SOC 2 Type II
Our SOC 2 Type II certification demonstrates our commitment to:
- Security: Protection against unauthorized access
- Availability: System availability for operation and use
- Processing Integrity: Complete, valid, accurate, timely processing
- Confidentiality: Protection of confidential information
- Privacy: Collection, use, retention, and disposal of personal information
ISO 27001 (In Progress)
We are working towards ISO 27001 certification for our Information Security Management System (ISMS), which will provide additional assurance of our security controls and risk management processes.
HIPAA Readiness
For healthcare customers, we offer HIPAA-ready features including:
- Business Associate Agreements (BAAs)
- Enhanced encryption and access controls
- Audit logging and monitoring
- Data residency controls
- Breach notification procedures
AI Ethics & Responsible AI
Jaydus is committed to responsible AI development and deployment. Our AI ethics framework includes:
- Fairness: We work to identify and mitigate bias in AI models and outputs
- Transparency: Clear communication about AI capabilities and limitations
- Accountability: Human oversight and responsibility for AI decisions
- Privacy: Protection of user data and conversations
- Safety: Content filtering and safety measures to prevent harmful outputs
- Human Rights: Respect for fundamental human rights and dignity
Data Governance
Data Classification
We classify data based on sensitivity levels and apply appropriate protection measures:
- Public: Information that can be freely shared
- Internal: Information for internal use only
- Confidential: Sensitive business information
- Restricted: Highly sensitive data requiring special protection
Data Lifecycle Management
We manage data throughout its lifecycle with appropriate controls for:
- Data creation and collection
- Data processing and use
- Data storage and retention
- Data sharing and disclosure
- Data archival and deletion
Vendor Management
We maintain strict vendor management processes to ensure our third-party providers meet our security and compliance standards:
- Due diligence assessments for all vendors
- Contractual security and privacy requirements
- Regular vendor security reviews and audits
- Incident response coordination with vendors
- Data processing agreements and subprocessor management
Compliance Monitoring
We continuously monitor our compliance posture through:
- Regular internal compliance assessments
- Third-party security and compliance audits
- Automated compliance monitoring tools
- Employee training and awareness programs
- Incident tracking and remediation
- Regulatory change monitoring and implementation
Contact Information
For compliance-related inquiries, please contact:
- Support: support@jaydus.ai
Last Updated: 10/7/2025
This compliance page is regularly updated to reflect our current compliance status and any changes to applicable regulations.