Security
Last updated: June 1, 2026
Keeping your customer conversations and translation data safe is core to how we build LinguoDesk. Here's an overview of the practices and controls we maintain.
Encryption everywhere
All data is encrypted in transit using TLS 1.2+ and at rest using AES-256.
Access controls
Role-based access, single sign-on, and least-privilege principles for all internal systems.
Infrastructure security
Hosted on SOC 2-compliant cloud infrastructure with isolated production environments.
Monitoring & response
24/7 monitoring, automated alerting, and a documented incident response process.
Audits & compliance
Regular third-party penetration testing and SOC 2-aligned annual audits.
Employee security
Background checks, security training, and device management for all employees.
Data hosting and isolation
Customer Data is stored in segregated, region-aware data stores. Each workspace's tickets, translations, and knowledge base content are logically isolated from other workspaces. Backups are encrypted and retained on a rolling schedule.
Application security
- Secure software development lifecycle with mandatory code review for all changes.
- Automated dependency scanning and vulnerability management.
- Multi-factor authentication available for all workspace members.
- Granular API keys with the ability to revoke and rotate credentials at any time.
Sub-processors
We work with a small number of vetted sub-processors for hosting, email delivery, and translation infrastructure. Each sub-processor is bound by a data processing agreement and undergoes a security review before onboarding. A current list is available on request.
Reporting a vulnerability
If you believe you've discovered a security vulnerability in LinguoDesk, please report it to security@linguodesk.com. We ask that you give us a reasonable amount of time to investigate and address the issue before any public disclosure, and we will not take legal action against good-faith security research conducted in line with this policy.