Privacy & Security
Privacy and Security FAQ
Frequently asked questions about BuildBetter’s privacy and security practices
Privacy and Security FAQ
Data Protection
How is my data protected in BuildBetter?
How is my data protected in BuildBetter?
BuildBetter employs multiple layers of protection:
- End-to-end encryption for all data in transit
- AES-256 encryption for data at rest
- Regular security audits and penetration testing
- Secure cloud infrastructure with redundant backups
- Role-based access controls
- Continuous security monitoring
Does BuildBetter use my data to train AI models?
Does BuildBetter use my data to train AI models?
No. Your data is never used to train any models, including our own. Our founder Spencer emphasizes this point: “Your data is never being used to train on any models. Your data is never being used to train for our own models.”
Who has access to my organization's data?
Who has access to my organization's data?
Only authorized users within your organization have access to your data, based on permissions you configure. BuildBetter staff cannot access your content unless specifically granted permission for support purposes, and all access is logged and auditable.
Where is my data stored?
Where is my data stored?
BuildBetter uses secure cloud infrastructure with data centers located in the United States. For enterprise customers with specific data residency requirements, we offer regional data storage options in select locations.
Compliance
What compliance certifications does BuildBetter have?
What compliance certifications does BuildBetter have?
BuildBetter holds several compliance certifications:
- SOC 2 Type 2
- GDPR compliance
- HIPAA compliance (available for healthcare customers)
- ISO 27001 (in process)
Is BuildBetter GDPR compliant?
Is BuildBetter GDPR compliant?
Yes. BuildBetter is fully GDPR compliant and can serve as either a data processor or data controller depending on your implementation. We provide tools for handling data subject requests, including access, portability, and erasure requirements.
Can BuildBetter be used in healthcare settings (HIPAA)?
Can BuildBetter be used in healthcare settings (HIPAA)?
Yes. BuildBetter can be configured for HIPAA compliance for healthcare customers. This requires signing a Business Associate Agreement (BAA) and implementing specific security controls. Contact our sales team for details on HIPAA-compliant implementations.
How does BuildBetter handle data retention and deletion?
How does BuildBetter handle data retention and deletion?
BuildBetter allows you to configure data retention policies according to your requirements. You can set automatic deletion timeframes ranging from 7 days to indefinite retention. When data is deleted, it is permanently removed from our systems following secure deletion protocols.
Privacy Controls
Can I control who can see specific recordings?
Can I control who can see specific recordings?
Yes. BuildBetter provides granular access controls for all content:
- Default permissions based on organizational roles
- Custom permissions for specific recordings
- Private folders with restricted access
- Sharing controls for external access
- Time-limited access options
How can I restrict sensitive information in recordings?
How can I restrict sensitive information in recordings?
BuildBetter offers several features to protect sensitive information:
- Automatic PII detection and redaction
- Custom redaction rules for industry-specific information
- Ability to edit transcripts to remove sensitive content
- Permission-based visibility for redacted content
Can I export or delete my data from BuildBetter?
Can I export or delete my data from BuildBetter?
Yes. You maintain complete control over your data. You can:
- Export data in standard formats
- Delete individual recordings or documents
- Delete all data associated with specific users
- Request complete account deletion with verification
How does BuildBetter handle consent for recording?
How does BuildBetter handle consent for recording?
BuildBetter provides multiple consent mechanisms:
- Pre-meeting notifications to participants
- Visible bot participant for transparency
- Automatic announcements at meeting start
- Consent messages in meeting chat
- Documentation features for recording policies
Security Features
What authentication methods does BuildBetter support?
What authentication methods does BuildBetter support?
BuildBetter supports multiple authentication methods:
- Email/password with strong password requirements
- Single Sign-On (SSO) via SAML 2.0
- Google Workspace integration
- Microsoft 365 integration
- Multi-factor authentication (MFA)
- IP-based access restrictions (Enterprise plan)
Does BuildBetter offer audit logs?
Does BuildBetter offer audit logs?
Yes. Enterprise customers have access to comprehensive audit logs that track:
- User access events
- Permission changes
- Content creation and modification
- Administrative actions
- Authentication events
- Data export activities
How does BuildBetter handle security incidents?
How does BuildBetter handle security incidents?
BuildBetter has a robust incident response plan that includes:
- 24/7 monitoring for suspicious activities
- Automated alerts for potential security issues
- Dedicated security response team
- Customer notification procedures
- Regular testing of incident response processes
- Post-incident analysis and remediation
Can I get a copy of BuildBetter's security documentation?
Can I get a copy of BuildBetter's security documentation?
Yes. We provide security documentation to customers under NDA, including:
- Security whitepaper
- Compliance certifications
- Penetration test summaries
- Data processing agreements
- Security policies and procedures
Security Best Practices
What security best practices does BuildBetter recommend?
What security best practices does BuildBetter recommend?
We recommend the following security practices:
- Enable multi-factor authentication for all users
- Implement role-based access controls
- Regularly review user access permissions
- Set appropriate data retention policies
- Train users on security awareness
- Use strong, unique passwords
- Enable SSO when available
How can I report a security concern or vulnerability?
How can I report a security concern or vulnerability?
Security concerns can be reported through:
- Our dedicated security email: security@buildbetter.ai
- The security contact form on our website
- For critical issues, call our security hotline at 1-800-BUILD-SEC
Have more questions about security?
Contact our security team for detailed information