At Xetlink.ai, we take your privacy and security very seriously. We understand the sensitive nature of our users’ information and have implemented various measures to ensure that your information is always protected. We are dedicated to maintaining the confidentiality of all information transmitted through our platform. We use advanced encryption technologies to safeguard all communication between our servers and your device, limit access to production servers, and constantly scan our systems, ensuring that your data remains secure from unauthorized access.
At Xetlink.ai, we take security seriously and use Static Application Security Testing (SAST) to ensure that our application is secure. By performing regular SAST, we can proactively identify and address potential security vulnerabilities before they can be exploited. This helps to ensure our platform’s ongoing security and integrity and protect our users’ data.
Dynamic Application Security Testing (DAST) is critical to our security strategy at Xetlink.ai. DAST allows us to continuously monitor our applications for vulnerabilities, ensuring we remain protected against the latest security threats. Our DAST tools scan our applications, searching for potential security flaws or vulnerabilities. This includes identifying vulnerabilities in our applications’ front-end and back-end, including APIs and other critical components.
Protecting the privacy of our users is of utmost importance to us at Xetlink.ai. As such, we take the necessary steps to ensure compliance with the European Union’s General Data Protection Regulation (GDPR).
We take all necessary measures to ensure your data is processed lawfully, fairly, and transparently. We only collect and process personal data for the purposes for which it is collected. We will never share your data with third parties without your explicit consent, except as the law requires.
At Xetlink.ai, we are committed to protecting your privacy and security through the California Consumer Privacy Act (CCPA).
Under the CCPA, Canadian and California residents have the right to know what personal information we collect, how we use it, and who we share it with. We take this responsibility seriously and have implemented various measures to safeguard your information and comply with CCPA.
Xetlink.ai doesn’t just talk about security. We’ve taken comprehensive actions to secure your conversations and data.
Limited Production Access: Our employees have minimal access to our production systems and the data they can view. Every employee with access to our production system is vetted extensively.
Secure Data Transfer/Storage: All data transfer between our servers is encrypted with SSL. We store all data in secure data centers equipped with the latest security technologies (256-bit Advanced Encryption Standard (AES-256)), including firewalls, access controls, and intrusion detection systems. Only authorized personnel with a legitimate need to access the data are granted access.
Two-factor authentication: At Xetlink.ai, we take the security of your account very seriously. That’s why we offer two-factor authentication (2FA) to provide additional protection to your login process.
With 2FA, you’ll need to provide two pieces of information to log in: your password and a unique code generated by an authentication app on your phone or other trusted device. This means that even if someone manages to obtain your password, they won’t be able to access your account without also having access to your authentication app.
You control your conversations (transcription and recordings).
Confidential transcripts: All your meeting transcripts are confidential and are only available to you, unless you choose to share them with other team members. We do not share transcripts or meeting notes, and restrict access to these notes on our servers.
The Xetlink Notetaker will only join meetings that you have invited it to, either by manually joining the meeting or specifying that it joins a scheduled meeting. Xetlink.ai respects the privacy of individuals and will not join meetings it has not been added to.
We take the protection of your personal information very seriously. We use advanced encryption technologies to safeguard all communication between our servers and your device, ensuring your data remains secure from unauthorized access. We also have strict access controls to limit access to your data to only those employees who need it to provide our services.
We use industry-standard SSL encryption to protect all communication between your browser and our servers. We also store all user data in secure data centers with access controls, intrusion detection systems, and other security measures to prevent unauthorized access or data breaches. Additionally, we regularly audit access logs to ensure that there are no unauthorized attempts to access user data.
Yes, you can delete your recordings and transcriptions from our platform at any time. We provide you with the ability to control your personal data by allowing you to edit or delete your data as you see fit.
We will never disclose your personal data to any third party unless we are required to do so by law or if it is necessary to provide our services. We may share your information with our third-party service providers who help us to provide our services, but only to the extent necessary for them to perform their tasks. In such cases, we require these third-party providers to comply with our privacy policies and security protocols.
We take data protection regulations very seriously and regularly review our systems and processes to ensure that we are compliant with all relevant regulations. We engage third-party security experts to audit our systems and processes to identify any potential vulnerabilities or risks. We also provide our users with the ability to control their personal data and offer them the option to anonymize their transcriptions.
Yes, you have the right to request a copy of the data we hold about you. Please contact our customer support team, and we will be happy to assist you with your request.
In the unlikely event of a data breach, we have a well-established incident response plan in place to handle the situation quickly and effectively. We will notify you promptly of any data breaches that may affect your personal data, as required by law. We will also take all necessary steps to mitigate the impact of the breach and prevent it from happening again in the future.
We provide our employees with regular training on data protection and privacy best practices to ensure that they are up to date with the latest developments in the field. We also have strict access controls to limit access to your data to only those employees who need it to provide our services.