Frequently Asked Questions

While we do not currently hold formal third-party certifications like SOC 2, our security program is designed to be fully aligned with the SOC 2 Trust Services Criteria. We document these controls in our Security & Compliance Whitepaper, which is available to customers under an NDA. Please see our Legal & Compliance page for more details. We are committed to pursuing formal certification as our company grows.

Yes. Penetration tests are performed on our platform at least annually. A summary of our most recent test report is available to customers under an NDA. Please see our main Security page for information on how to request it.

We employ a multi-layered approach to data protection. All customer data is classified as Confidential, encrypted in transit using TLS 1.2+ and at rest using AES-256. Access is strictly controlled by the Principle of Least Privilege. You can learn more on our Data Security & Encryption page.

We welcome and encourage reports from the security community. Please follow the guidelines in our Responsible Disclosure Program to submit a report.

Yes. We are committed to full compliance with the General Data Protection Regulation (GDPR). Our Data Processing Addendum (DPA). which includes the Standard Contractual Clauses (SCCs), is incorporated into our standard agreement to meet the requirements for our EU, UK, and Switzerland customers.

Our primary production infrastructure and data storage are located in the United States. Our optional native monitoring service utilizes servers in various countries as selected by you. We provide a full Data Transfer Impact Assessment and a list of our infrastructure providers on our Sub-processors page.

No. We never sell your data or use it for third-party advertising. As outlined in our Privacy Policy, we are a data processor for the data you entrust to us and only use it for the specific purpose of providing and improving the Hund service.

No. It is our unequivocal policy that we will never use any customer data to train or fine-tune any generative AI models. This commitment is a core principle of our company. You can read our full Responsible AI & Model Governance Principles for more details on our security-first approach to model-driven features.

We offer a 99.9% uptime commitment for our Usage-Based Tier and a 99.95% commitment for our Enterprise Tier. Full details and service credit information are available in our Service Level Agreement (SLA).

You can always view our real-time and historical system status at status.hund.io or hundstat.us.

Our Business Continuity Plan is designed to meet a Recovery Time Objective (RTO) of 2 hours and a Recovery Point Objective (RPO) of 15 minutes. Learn more on our Resilience page.