Trust center¶
RecSys is an auditable recommendation system suite with deterministic ranking and versioned ship/rollback.
Forward to security (copy/paste)¶
Start review async by sending this short list:
- Security pack (print to PDF): Security pack
- Security posture snapshot (one-page summary): Security posture snapshot
- Commercial procurement artifacts: Commercial procurement artifacts
- DPA/SCC baseline: DPA and SCC terms
- Subprocessor/distribution disclosure: Subprocessors and distribution details
- Standard support schedule: SLA and support schedule
- Security, privacy, compliance overview: Security, privacy, compliance
- Production readiness checklist: Production readiness checklist
- Known limitations and non-goals: Known limitations
- Licensing + pricing: Buyer guide
- Vulnerability reporting: Security policy
Data ownership stance (short):
- The suite is typically self-hosted: you run the infrastructure and own the data.
- Do not send or log raw PII (use pseudonymous stable IDs).
Who this is for¶
- Security/compliance reviewers evaluating RecSys
- Engineering leads preparing for a pilot or production rollout
- SRE/on-call engineers who need rollback levers and runbooks
What you will get¶
- The shortest path to: data posture → access control → operational readiness
- Links to the exact pages security reviews typically request
- A “security pack” index you can print to PDF
Quick paths¶
- Security, privacy, compliance overview
Data flows, shared responsibility, hardening checklist. - Production readiness checklist
Pre-flight checks before you go live. - Operational reliability & rollback
What can be rolled back, how fast, and what “healthy” looks like. - Vulnerability reporting
How to report security issues. - Security pack (index)
Print-friendly list of security/procurement docs. - Security posture snapshot
Dated one-page baseline for security questionnaires. - Commercial procurement artifacts
What is public vs Enterprise-custom during procurement. - DPA and SCC terms
Default contractual privacy/transfer terms for self-serve plans. - Subprocessors and distribution details
Default processing and delivery disclosure model. - SLA and support schedule
Standard support schedule for self-serve plans.
Read next¶
- Exposure logging & attribution: Exposure logging & attribution
- Responsibilities (RACI): Responsibilities (RACI)
- Licensing & pricing: Pricing