Security & compliance

Security your patients and clients can trust.

YouSquared handles sensitive conversations every day. Protecting that data isn't a feature — it's the foundation. We're held to the independent frameworks that govern sensitive data.

HIPAA compliant

HIPAA · BAA

PHI handled under a signed Business Associate Agreement.

AICPA SOC 2

SOC 2

Controls for security, availability, and confidentiality.

PIPEDA

PIPEDA

Aligned with Canadian privacy law for personal data.

Data lifecycle

What happens to every call

Each conversation moves through the same protected path — from the second it connects to the day you ask us to delete it.

  1. 01

    In transit

    The moment a call connects, audio and data are encrypted with TLS end to end.

  2. 02

    At rest

    Recordings and transcripts are encrypted in storage and access-controlled.

  3. 03

    Access

    Least-privilege, fully audited access — only what's needed to run the service.

  4. 04

    Your control

    Export your call data securely, and request deletion at any time.

  • We never sell your data.
  • Resilient, monitored infrastructure with redundancy.

For covered entities

Healthcare BAA

Covered entities can operate under our Business Associate Agreement, which supplements our Terms and governs how Protected Health Information is handled.