Compliance & Regulatory Alignment
ChordianAI inherits the comprehensive compliance portfolios of our underlying infrastructure partners (AWS and Pinecone). By leveraging these enterprise-grade platforms, ChordianAI supports deployment in highly regulated sectors.
Compliance Matrix
| Standard | Applicability | Details |
|---|---|---|
| SOC 2 Type II | Certified | Both AWS and Pinecone are SOC 2 Type II compliant, ensuring rigorous controls over security, availability, and confidentiality |
| GDPR | Compliant | ChordianAI architecture supports “Right to be Forgotten” via the Identity Resolution engine, allowing for the deletion of PII across MongoDB, Vector, and Graph stores simultaneously |
| HIPAA | Eligible | Architecture utilizes HIPAA-eligible services (AWS Neptune, MongoDB Atlas, Pinecone Enterprise) allowing for the processing of PHI under a BAA |
| ISO 27001 | Certified | Underlying infrastructure adheres to ISO 27001 standards for information security management |