Security and Privacy
at Canals

Explore how Canals secures your data and protects your privacy

Data Practices You Can Trust

Our data privacy and security are both supported by proven best practices and externally audited processes

Trusted Access

Strong authentication and least-privilege access limit data exposure while enabling secure access across the platform

Data Safeguards

Sensitive data is protected end-to-end with modern encryption and secure data handling practices

Defense by Design

Layered infrastructure and network protections minimize exposure and defend against malicious activity

Continuous Oversight

Security is continually monitored, tested, and governed to maintain resilience as the platform evolves

Safe, Secure, SOC 2 Audited

Enterprise-grade data security, proven and tested by an independent SOC 2 Type II review

Built-in Security Protections

Security controls are embedded into Canals' architecture and workflows

Secure identity controls with SSO, MFA, and least-privilege access

Data encryption using AES-256 at rest and TLS 1.3 for data in transit

Layered network defenses with isolation, firewalls, and abuse control

Man receiving text message that says "Got everything right on time! Thanks for the super fast turnaround!"

Ongoing Security Validation

Security is continuously monitored, tested, and validated over time

SOC 2 Type II audited controls aligned with industry standards

Real-time monitoring, audit logs, and operational visibility

Third-party penetration testing and automated security checks

Data Privacy

Data privacy and data security are not the same – and we take both seriously. Beyond securing your data, we govern how it's accessed and used to ensure it remains yours.

You own your data

We are committed to securely processing and protecting customer data while ensuring our customers retain full ownership

Your data is not for sale

Unless it is specifically authorized by you, we do not provide your data to third parties for sales or marketing purposes

Your data serves only you

Your data trains your personal Canals AI models; your underlying data is not shared with or exposed to any other customers

Security and Privacy
‍FAQs

What's the difference between data security and data privacy?

Data security focuses on how information is protected from unauthorized access, loss, or misuse with technical and operational safeguards. Data privacy governs how information is used, processed, disclosed, and retained.

At Canals, we treat privacy and security as distinct responsibilities and address each separately.

Read our Privacy Policy

How can customers verify that Canals' data security controls are effective?

Canals undergoes independent SOC 2 Type II audits, which assess how security controls are designed and how they perform over time. This outside review provides third-party validation that a company's security practices are operating as intended. We can share a copy of the external report upon request.

Is Canals SOC 2 Type II compliant?

Yes. Canals' security controls have been independently audited and verified to be effective according to the SOC 2 framework.

Who owns the data processed by Canals?

Customers retain full owernship of their data processed by Canals.

Is my data exposed to other customers?

No. Identifying customer data is not exposed to other Canals customers.

How does Canals use customer data to train AI or machine learning models?

AI models in Canals are tailored to each organization and improve over time as they learn from that specific organization's usage. Canals does not retain data obtained through the Google Workspace APIs or Microsoft Outlook to develop, improve, or train generalized AI and/or ML models.

Does Canals sell or share my data for marketing purposes?

No. Unless specifically authorized by a customers, we do not provide information to third parties for marketing purposes.

Who should I contact with security or privacy questions?

For data handling questions, please contact us at support@canals.ai or privacy@canals.ai

Security and Privacyat Canals