VAVUS

Безопасность и конфиденциальность

Перевод, который защищает то, что вы говорите

Client-side encryption по умолчанию. BAA-backed healthcare onboarding. GDPR data export и deletion. 6-year audit retention. Managed cloud и fully on-premises deployment paths. Zero PHI in application logs by design.

E2E

Messaging на Signal Protocol

BAA

HIPAA-aligned healthcare

6yr

Audit retention

On-prem

Вариант deployment

Восемь pillars

Vavus AI с первого дня создавался для healthcare и enterprise. Consumer features inherit the same controls.

Client-side encryption по умолчанию

New stored history, documents и audio encrypted на вашем device перед storage. Messaging uses end-to-end encryption. Live speech briefly processed in memory for speech input, translation and spoken output before storage rules apply.

HIPAA-aligned with BAA

Healthcare customers проходят onboarding по Business Associate Agreement. 8-hour token expiry, 15-minute idle timeout, secure deletion of PHI assets, zero PHI in application logs by design, 6-year audit retention.

GDPR-ready по умолчанию

Authenticated data export. Account deletion endpoint. Granular cookie consent on the web. Consent state tracked per user. First-touch attribution captured only after marketing consent.

Managed cloud и on-premises deployments

Помимо Vavus cloud on managed cloud, regulated buyers могут review dedicated managed cloud deployment или fully on-premises install без outbound network calls.

Audit trail retained 6 years

Audit logs record metadata-only events (who did what, when, from which device) и retained for 6 years для поддержки HIPAA и enterprise compliance reviews. Logs never contain PHI or translation content.

Strong account security

JWT auth with rotating tokens, separate stream tokens for WebSocket sessions, SAML 2.0 SSO for Enterprise, brute-force protection with exponential backoff, token revocation on logout and password change.

Обнаружение breach

Unusual activity, location changes и IP anomalies are flagged. Suspicious sessions challenged or revoked. Account lockout protects against credential stuffing.

Self-hosted support chat

Support runs in-house at support.vavusai.com on self-hosted Chatwoot - support transcripts are not handed to a third-party vendor.

Типы аккаунтов и controls

Personal, Healthcare и Enterprise accounts share the same encryption baseline. Healthcare и Enterprise add stricter controls on top.

Тип аккаунтаSession controlsAdditional controls
Personal30-day token expiryStandard features. End-to-end encrypted messaging. Client-side encrypted history and documents.
Healthcare8-hour token expiry, 15-minute idle timeoutBAA-backed onboarding, medical speech recognition, on-premises deployment option, audit logging, no PHI in logs, secure deletion of PHI assets, 6-year audit retention.
Enterprise30-day token expiry (or org policy)Full audit logging and export, SAML 2.0 SSO, organization management, regional data residency, managed cloud deployment path and on-premises deployments.

Страницы trust с высоким intent

Shorter pages for buyers searching specific privacy, healthcare and encryption questions.

Privacy Mode & Data Retention

Zero data retention for unsaved live content, or encrypted history when you choose to save it.

Data Controls

History sync modes, local storage, deletion, exports, service handling and healthcare controls.

End-to-end encrypted translation

Precise breakdown of Signal messaging, client-side encrypted storage, live processing and on-prem options.

HIPAA compliant translation app

Evaluator answers for BAA, PHI logging, healthcare account controls, audit retention and deletion.

Medical interpreter app

Clinical translation workflows with medical speech recognition, BAA-backed onboarding and human-review guardrails.

Конкретные technical controls

Protocols, controls and primitives, которые Vavus AI uses today. This list is the citable detail behind the high-level claims above.

  • Client-side encryption для history, documents и audio
  • End-to-end encryption для messaging
  • AES-256-GCM (legacy server-side, read-only для older content)
  • TLS 1.2+ на load balancer
  • Cloud Armor WAF (500 req/min, 60s ban, блокировка XSS и SQL injection)
  • Per-user Account Master Key в device Keychain wrapping per-artifact keys
  • JWT auth + separate stream tokens для WebSocket sessions
  • SAML 2.0 SSO (Enterprise)
  • Brute-force protection с exponential backoff и account lockout
  • Token revocation при logout и password change
  • Breach detection (unusual activity, location, IP anomalies)
  • Secure deletion (overwrite before unlink) для PHI assets
  • Audit logs retained 6 years (Cloud Logging + GCS lifecycle)

Запросить security documentation

Healthcare и enterprise teams могут request full security documentation pack - encryption architecture diagrams, key management, audit log schema, deployment topologies, BAA template и DPA template.

Запросить security packHealthcare onboardingEnterprise deployment

Частые вопросы

Vavus AI encrypted end-to-end?+

Messaging encrypted end-to-end - Vavus never sees plaintext message content. Translation history, documents and audio uploads encrypted client-side before leaving your device, so server stores only ciphertext for new content. Real-time speech translation briefly plaintext in memory during speech-input and spoken-output processing steps, then encrypted before storage.

Vavus AI signs a Business Associate Agreement?+

Да, for approved healthcare customers after review. Contact constantine@vavusai.com or request review from the Healthcare page. Once a BAA is in place, your account uses 8-hour token expiry, 15-minute idle timeout, secure deletion of PHI assets, medical speech recognition, 6-year audit retention and zero PHI in application logs.

Где Vavus AI hosts my data?+

Standard Vavus cloud runs on Vavus cloud across US (primary), EU (edge) and Asia (edge) regions behind global load balancer. Enterprise customers can review dedicated managed cloud deployment or fully on-premises install in their own data center.

Могу ли я export my Vavus AI data?+

Да. Authenticated users can request full data export through the data export endpoint. Export includes your profile, history, messaging metadata, billing records and consent state - encrypted at rest with your own encryption keys for items that were stored encrypted.

Как долго Vavus AI keeps my data?+

Account deletion removes your user record and triggers secure deletion on associated artifacts. Audit log entries retained for 6 years to support HIPAA and enterprise compliance reviews; these contain metadata only (user actions and timestamps), not PHI or translation content.