Trust center

Built to be trusted with money, data, and infrastructure.

kiss is designed to enforce decisions on your most sensitive actions. Here is how we handle the data behind them.

Data minimization

We process only what is needed to verify an action, the request parameters and the specific records we compare them against.

Security practices

We follow SOC 2-aligned controls across access, encryption, and change management. Our security documentation is available under NDA.

Subprocessors

We keep our list of infrastructure and service subprocessors current and share it on request.

Data residency & retention

Audit records are retained for as long as your account is active. Deletion and export are available on request.

Request our documentation

Security teams can request our practices overview, subprocessor list, and questionnaire responses.

Contact security