Your data security is our top priority. Learn how we protect your sensitive information.
All data is encrypted in transit using TLS. Your documents are processed in-memory only - we never store your actual documents, only the compliance scan results.
We use Google's Firebase Firestore to store only scan results and metadata - never your original documents. This ensures maximum privacy and minimal data exposure.
Documents are processed through OpenAI's API for compliance scanning. We do not train AI models on your data, and document content is not retained by OpenAI or Complima.
Scan results (not documents) are retained based on your plan (30 days to unlimited). You can delete your scan history at any time from your dashboard.
Hosted on Firebase, backed by Google's infrastructure
Enterprise-grade AI processing with data privacy guarantees
PCI-compliant payment processing
Documents are read in your browser and sent directly to OpenAI's API for compliance scanning. OpenAI does not retain document content or use it to train models. Complima never stores your original documents - only the compliance scan results are saved to Firestore.
Only scan results and metadata are stored in Firebase Firestore - never your documents. Retention periods vary by plan: 30 days (Starter), 1 year (Professional), or unlimited (Enterprise). You can delete scan results at any time from your dashboard.
Firebase Authentication ensures only you can access your scan results. All API requests require authentication. Professional and Enterprise plans can create API keys with rate limiting for programmatic access.
Contact our security team for more information about our practices and certifications.
Contact Security Team