Back to Trust Center
Download compliance pack (JSON)
Enterprise Compliance Pack
Honest SOC 2-aligned documentation for security reviews. FuseIQ is not yet SOC 2 Type II certified — this pack describes implemented controls and roadmap items for RFPs.
Controls matrix
| Control | Status | Evidence |
|---|---|---|
| Access control (RBAC) | Implemented | Workspace roles, channel RLS, API auth |
| Encryption in transit | Implemented | TLS 1.3 on all endpoints |
| Encryption at rest | Implemented | AES-256 via cloud provider |
| Audit logging | Implemented | audit_log + SIEM JSON export with trace_id |
| HITL approvals | Implemented | Risk-scored approval queue + Swarm gates |
| BYOK / data minimization | Implemented | LLM keys stay in customer providers |
| Eval gates before deploy | Implemented | Workspace policy + deploy-time enforcement |
| SOC 2 Type II certification | In progress | Aligned controls; certification on Enterprise roadmap |
SIEM integration
Pro+ workspaces: GET /api/audit/siem returns JSON or NDJSON with trace_id for Splunk, Datadog, and Elastic.
Query params: ?since=ISO8601&limit=5000&format=ndjson