[{"data":1,"prerenderedAt":411},["ShallowReactive",2],{"help-article-getting-started-security-overview":3,"help-siblings-getting-started":373},{"_path":4,"_dir":5,"_draft":6,"_partial":6,"_locale":7,"title":8,"description":9,"category":5,"order":10,"difficulty":11,"time_to_complete":12,"related":13,"body":17,"_type":367,"_id":368,"_source":369,"_file":370,"_stem":371,"_extension":372},"\u002Fhelp\u002Fgetting-started\u002Fsecurity-overview","getting-started",false,"","Security and data protection","How AIsoule protects your data — encryption, access controls, and compliance measures.",11,"beginner","3 minutes",[14,15,16],"\u002Fhelp\u002Fsettings\u002Froles-permissions","\u002Fhelp\u002Fsettings\u002Fsso-configuration","\u002Fhelp\u002Fsettings\u002Fapi-keys",{"type":18,"children":19,"toc":358},"root",[20,28,34,41,134,140,186,192,235,241,246,269,275,298,304],{"type":21,"tag":22,"props":23,"children":25},"element","h1",{"id":24},"security-and-data-protection",[26],{"type":27,"value":8},"text",{"type":21,"tag":29,"props":30,"children":31},"p",{},[32],{"type":27,"value":33},"AIsoule takes security seriously. Here's how your data is protected.",{"type":21,"tag":35,"props":36,"children":38},"h2",{"id":37},"data-encryption",[39],{"type":27,"value":40},"Data encryption",{"type":21,"tag":42,"props":43,"children":44},"table",{},[45,64],{"type":21,"tag":46,"props":47,"children":48},"thead",{},[49],{"type":21,"tag":50,"props":51,"children":52},"tr",{},[53,59],{"type":21,"tag":54,"props":55,"children":56},"th",{},[57],{"type":27,"value":58},"Data",{"type":21,"tag":54,"props":60,"children":61},{},[62],{"type":27,"value":63},"Protection",{"type":21,"tag":65,"props":66,"children":67},"tbody",{},[68,82,95,108,121],{"type":21,"tag":50,"props":69,"children":70},{},[71,77],{"type":21,"tag":72,"props":73,"children":74},"td",{},[75],{"type":27,"value":76},"Access tokens",{"type":21,"tag":72,"props":78,"children":79},{},[80],{"type":27,"value":81},"AES-256 encrypted at rest",{"type":21,"tag":50,"props":83,"children":84},{},[85,90],{"type":21,"tag":72,"props":86,"children":87},{},[88],{"type":27,"value":89},"API keys",{"type":21,"tag":72,"props":91,"children":92},{},[93],{"type":27,"value":94},"Encrypted at rest",{"type":21,"tag":50,"props":96,"children":97},{},[98,103],{"type":21,"tag":72,"props":99,"children":100},{},[101],{"type":27,"value":102},"Passwords",{"type":21,"tag":72,"props":104,"children":105},{},[106],{"type":27,"value":107},"bcrypt hashed (never stored in plain text)",{"type":21,"tag":50,"props":109,"children":110},{},[111,116],{"type":21,"tag":72,"props":112,"children":113},{},[114],{"type":27,"value":115},"Data in transit",{"type":21,"tag":72,"props":117,"children":118},{},[119],{"type":27,"value":120},"TLS 1.3 (HTTPS only)",{"type":21,"tag":50,"props":122,"children":123},{},[124,129],{"type":21,"tag":72,"props":125,"children":126},{},[127],{"type":27,"value":128},"Database",{"type":21,"tag":72,"props":130,"children":131},{},[132],{"type":27,"value":133},"Encrypted connections",{"type":21,"tag":35,"props":135,"children":137},{"id":136},"access-controls",[138],{"type":27,"value":139},"Access controls",{"type":21,"tag":141,"props":142,"children":143},"ul",{},[144,156,166,176],{"type":21,"tag":145,"props":146,"children":147},"li",{},[148,154],{"type":21,"tag":149,"props":150,"children":151},"strong",{},[152],{"type":27,"value":153},"Role-based access (RBAC)",{"type":27,"value":155}," — Granular permissions per user",{"type":21,"tag":145,"props":157,"children":158},{},[159,164],{"type":21,"tag":149,"props":160,"children":161},{},[162],{"type":27,"value":163},"API key scoping",{"type":27,"value":165}," — Keys inherit creator's permissions",{"type":21,"tag":145,"props":167,"children":168},{},[169,174],{"type":21,"tag":149,"props":170,"children":171},{},[172],{"type":27,"value":173},"Session management",{"type":27,"value":175}," — JWT tokens with short expiry (15 min access, 7 day refresh)",{"type":21,"tag":145,"props":177,"children":178},{},[179,184],{"type":21,"tag":149,"props":180,"children":181},{},[182],{"type":27,"value":183},"CSRF protection",{"type":27,"value":185}," — All state-changing requests verified",{"type":21,"tag":35,"props":187,"children":189},{"id":188},"authentication-security",[190],{"type":27,"value":191},"Authentication security",{"type":21,"tag":141,"props":193,"children":194},{},[195,205,215,225],{"type":21,"tag":145,"props":196,"children":197},{},[198,203],{"type":21,"tag":149,"props":199,"children":200},{},[201],{"type":27,"value":202},"Rate limiting",{"type":27,"value":204}," — 5 login attempts per minute",{"type":21,"tag":145,"props":206,"children":207},{},[208,213],{"type":21,"tag":149,"props":209,"children":210},{},[211],{"type":27,"value":212},"SSO support",{"type":27,"value":214}," — Google, Microsoft, GitHub (enterprise-grade)",{"type":21,"tag":145,"props":216,"children":217},{},[218,223],{"type":21,"tag":149,"props":219,"children":220},{},[221],{"type":27,"value":222},"Password requirements",{"type":27,"value":224}," — Minimum 8 characters",{"type":21,"tag":145,"props":226,"children":227},{},[228,233],{"type":21,"tag":149,"props":229,"children":230},{},[231],{"type":27,"value":232},"Token rotation",{"type":27,"value":234}," — Refresh tokens are single-use",{"type":21,"tag":35,"props":236,"children":238},{"id":237},"audit-trail",[239],{"type":27,"value":240},"Audit trail",{"type":21,"tag":29,"props":242,"children":243},{},[244],{"type":27,"value":245},"Every action is logged:",{"type":21,"tag":141,"props":247,"children":248},{},[249,254,259,264],{"type":21,"tag":145,"props":250,"children":251},{},[252],{"type":27,"value":253},"Who did what, when",{"type":21,"tag":145,"props":255,"children":256},{},[257],{"type":27,"value":258},"IP address and user agent",{"type":21,"tag":145,"props":260,"children":261},{},[262],{"type":27,"value":263},"Changes tracked (before\u002Fafter)",{"type":21,"tag":145,"props":265,"children":266},{},[267],{"type":27,"value":268},"90-day retention",{"type":21,"tag":35,"props":270,"children":272},{"id":271},"infrastructure",[273],{"type":27,"value":274},"Infrastructure",{"type":21,"tag":141,"props":276,"children":277},{},[278,283,288,293],{"type":21,"tag":145,"props":279,"children":280},{},[281],{"type":27,"value":282},"Hosted on secure cloud infrastructure",{"type":21,"tag":145,"props":284,"children":285},{},[286],{"type":27,"value":287},"Regular security updates",{"type":21,"tag":145,"props":289,"children":290},{},[291],{"type":27,"value":292},"Automated backups",{"type":21,"tag":145,"props":294,"children":295},{},[296],{"type":27,"value":297},"99.9% uptime SLA",{"type":21,"tag":35,"props":299,"children":301},{"id":300},"your-responsibilities",[302],{"type":27,"value":303},"Your responsibilities",{"type":21,"tag":305,"props":306,"children":307},"ol",{},[308,318,328,338,348],{"type":21,"tag":145,"props":309,"children":310},{},[311,316],{"type":21,"tag":149,"props":312,"children":313},{},[314],{"type":27,"value":315},"Use strong passwords",{"type":27,"value":317}," — Don't reuse passwords",{"type":21,"tag":145,"props":319,"children":320},{},[321,326],{"type":21,"tag":149,"props":322,"children":323},{},[324],{"type":27,"value":325},"Enable SSO",{"type":27,"value":327}," — For enterprise teams",{"type":21,"tag":145,"props":329,"children":330},{},[331,336],{"type":21,"tag":149,"props":332,"children":333},{},[334],{"type":27,"value":335},"Rotate API keys",{"type":27,"value":337}," — Every 90 days",{"type":21,"tag":145,"props":339,"children":340},{},[341,346],{"type":21,"tag":149,"props":342,"children":343},{},[344],{"type":27,"value":345},"Review access",{"type":27,"value":347}," — Remove unused users quarterly",{"type":21,"tag":145,"props":349,"children":350},{},[351,356],{"type":21,"tag":149,"props":352,"children":353},{},[354],{"type":27,"value":355},"Don't share credentials",{"type":27,"value":357}," — Each person gets their own account",{"title":7,"searchDepth":359,"depth":359,"links":360},2,[361,362,363,364,365,366],{"id":37,"depth":359,"text":40},{"id":136,"depth":359,"text":139},{"id":188,"depth":359,"text":191},{"id":237,"depth":359,"text":240},{"id":271,"depth":359,"text":274},{"id":300,"depth":359,"text":303},"markdown","content:help:getting-started:security-overview.md","content","help\u002Fgetting-started\u002Fsecurity-overview.md","help\u002Fgetting-started\u002Fsecurity-overview","md",[374,377,380,383,386,389,392,395,398,401,402,405,408],{"_path":375,"title":376},"\u002Fhelp\u002Fgetting-started\u002Fbilling-plans","Billing, plans, and subscription management",{"_path":378,"title":379},"\u002Fhelp\u002Fgetting-started\u002Fbusiness-profile-setup","Setting up your business profile",{"_path":381,"title":382},"\u002Fhelp\u002Fgetting-started\u002Fconnect-whatsapp","Connecting your WhatsApp Business number",{"_path":384,"title":385},"\u002Fhelp\u002Fgetting-started\u002Fcreate-account","How to create your AIsoule account",{"_path":387,"title":388},"\u002Fhelp\u002Fgetting-started\u002Fdashboard-overview","Understanding the AIsoule dashboard",{"_path":390,"title":391},"\u002Fhelp\u002Fgetting-started\u002Finvite-team","Inviting team members to your workspace",{"_path":393,"title":394},"\u002Fhelp\u002Fgetting-started\u002Fmobile-app-setup","Mobile app setup (iOS & Android)",{"_path":396,"title":397},"\u002Fhelp\u002Fgetting-started\u002Forganization-switching","Switching between organizations",{"_path":399,"title":400},"\u002Fhelp\u002Fgetting-started\u002Fprofile-settings","Profile settings (password, availability)",{"_path":4,"title":8},{"_path":403,"title":404},"\u002Fhelp\u002Fgetting-started\u002Fsend-first-message","Send your first message in 5 minutes",{"_path":406,"title":407},"\u002Fhelp\u002Fgetting-started\u002Fwebhook-setup","Configuring webhooks for incoming messages",{"_path":409,"title":410},"\u002Fhelp\u002Fgetting-started\u002Fwhatsapp-api-basics","Understanding WhatsApp Business API basics",1780423185623]