Skip to main content

Documentation Index

Fetch the complete documentation index at: https://docs.withpace.com/llms.txt

Use this file to discover all available pages before exploring further.

Pace Security & Privacy

At Pace, we take data security and privacy extremely seriously. We understand that our customers deal with sensitive customer data including Protected Health Information and are committed to providing robust security measures to protect their data. See an overview of our security and privacy policy here: https://withpace.com/security. We are also SOC 2 Type II compliant — see the full security audit report here: https://trust.withpace.com/.

Data Storage

  • Storage Location: We utilize Amazon Web Services (AWS) for storing data. Data is encrypted at rest and in transit.
  • Data Retention: We support Zero Data Retention for our LLMs via our OpenAI partnership or Azure OpenAI.
  • Data Usage: We never use any of customer data for training purposes unless it is with the customer’s explicit permission for improving their own models.
  • PII/PHI Handling: While our existing data encryption policies are typically sufficient for meeting GDPR compliance, we also offer specific handling of PII data. There are two options:
    • Redaction API: Customer provides a redaction service which we will integrate with. This is the recommended approach.
    • Custom: We can build out redaction on your behalf, but this will impact the speed and accuracy of the system and increase time to go live and platform cost. We typically do not recommend relying on our system for redaction, so reach out if you’re considering this option.

Encryption

  • Encryption at Rest: All data stored in AWS S3 is encrypted at rest using industry-standard encryption algorithms. This means that even if unauthorized individuals were to gain access to the stored data, they would not be able to decipher it without the proper encryption keys.
  • Encryption in Transit: We employ encryption protocols to protect data in transit. All communication between our systems and the data storage is conducted over secure channels using encryption mechanisms such as SSL/TLS. This ensures that data remains confidential and tamper-proof during transmission.

Compliance Certification

  • GDPR: We are GDPR compliant and support the deletion of any data upon user request.
  • SOC 2: We have completed our SOC 2 Type II process. Please reach out to receive the report. This rigorous certification demonstrates our commitment to maintaining a secure and reliable system. It involves a comprehensive audit of our security controls, policies, and procedures by an independent third party.

Deployment Options

  • Multi-Tenant: Our standard cloud deployment: fully managed, scalable, and cost-efficient. Hosted on AWS through Render, this option provides fast setup, automatic scaling, and ongoing maintenance with strong logical data isolation between customers. This is our recommended and most commonly adopted approach.
  • Single-Tenant: A dedicated environment for your organization, deployed in the region of your choice. Provides complete data isolation, customizable configurations, and stronger compliance controls. Compared to our Multi-Tenant option, this approach increases time to go live and overall platform cost. Reach out if you’re considering this option.
  • BYOC/OnPrem: Deploy the platform directly within your own cloud. You retain full control of your data, networking, and security policies, while we handle deployment, monitoring, and updates. Compared to our Multi-Tenant option, this approach will greatly increase time to go live and overall platform cost. Reach out if you’re considering this option.