> ## Documentation Index
> Fetch the complete documentation index at: https://docs.scorecard.io/llms.txt
> Use this file to discover all available pages before exploring further.

# Security & Privacy

> Preserving the privacy of our clients and ensuring secure processes is of top priority at Scorecard.

export const DarkLightImage = ({lightSrc, caption, alt, darkSrc = null, width = "1000"}) => {
  const getAbsoluteUrl = src => {
    if (src.startsWith('http://') || src.startsWith('https://')) {
      return src;
    }
    const currentUrl = typeof window !== 'undefined' ? window.location.origin : '';
    if (currentUrl.includes('.mintlify.app')) {
      const subdomain = currentUrl.split('.')[0].replace('https://', '');
      return `https://mintlify.s3.us-west-1.amazonaws.com/${subdomain}${src.startsWith('/') ? '' : '/'}${src}`;
    } else if (currentUrl === 'https://docs.scorecard.io') {
      return `https://mintlify.s3.us-west-1.amazonaws.com/scorecard-d65b5e8a${src.startsWith('/') ? '' : '/'}${src}`;
    } else {
      return `${currentUrl}${src.startsWith('/') ? '' : '/'}${src}`;
    }
  };
  const content = <>
      <img className="block dark:hidden" width={width} src={getAbsoluteUrl(lightSrc)} alt={alt} />
      <img className="hidden dark:block" width={width} src={getAbsoluteUrl(darkSrc || lightSrc.replace('light', 'dark'))} alt={alt} />
    </>;
  if (caption) {
    return <Frame caption={caption}>{content}</Frame>;
  } else {
    return content;
  }
};

Scorecard AI is [SOC 2](https://www.aicpa-cima.com/topic/audit-assurance/audit-and-assurance-greater-than-soc-2) compliant and various measures are undertaken regarding security, data privacy, and compliance. For more information, visit our [Trust Center](https://trust.scorecard.io/).

<DarkLightImage lightSrc="/images/trust-center-light.png" caption="Scorecard's Trust Center." alt="Screenshot of Scorecard's Trust Center on Safebase." />

## Data Encryption and Data Security

Scorecard AI takes extensive measures to ensure the confidentiality, integrity, and overall security of your data.

* **Encryption:** Data is stored encrypted (using the AES-256 standard) and transmitted encrypted (using HTTPS/TLS protocols). This protects sensitive details such as access tokens and confidential information.
* **Data Erasure:** We erase data upon request or when it reaches its designated retention period, ensuring that outdated information isn’t stored unnecessarily.
* **Physical Security:** Our cloud service providers ensure the physical security of the infrastructure where your data is stored using industry-standard encryption.

## Scorecard with Self-Hosted Data

Are you dealing with very sensitive data, require specialized security arrangements, or have specific compliance needs? [Send us an email](mailto:team@scorecard.io) and we're happy to discuss data-plane self-hosting solutions to support your team's needs!