Security & Trust

Your negotiation data, protected by design.

Whispor is built so your most sensitive negotiations stay yours. Isolation, encryption, and an audit trail are part of the architecture, not an add-on.

Signal doctrine

We report what was said and done, never guesses

Whispor observes what was said and done and cites the evidence. It does not claim to read minds, detect emotions, or profile people. Your counterparties are treated as fairly as your own team, and every insight traces back to a verifiable fact.

The controls

How we protect your data

Six controls that are part of the architecture, not bolted on afterwards.

Tenant isolation by design

Every customer's data is separated at the database with row-level security. One tenant can never read another's data, and the rule holds even if application code has a bug.

Encrypted in transit

Every connection uses TLS with HSTS, from the browser to the API to the database. Nothing negotiation-related moves over an unencrypted channel.

Role-based access and an immutable audit log

Access follows least privilege by role. Every meaningful action is written to an append-only audit log that cannot be edited after the fact.

Automated, tested backups

Encrypted backups run every few hours and are stored separately from the primary database. Restores are tested, not assumed.

Consent-first recording

No call is analysed without attested consent, and the Whispor assistant announces itself when it joins a meeting. Consent is recorded with who confirmed it and when.

Data minimisation

Whispor records observable behaviour and facts with citations. It does not infer emotions or capture biometric signals, and it keeps only what the negotiation requires.

Compliance posture

Where we stand on compliance

Stated as posture, and only what we actually hold.

GDPR-compliant

Data-subject rights, minimisation, and consent built in.

SOC 2-aligned controls

Controls mapped to the SOC 2 Trust Services Criteria.

Talk to us

Questions about security or data handling?

We're happy to walk security and data teams through the architecture in detail.