# Security and Compliance Datasaur has a robust security measures and compliance standards to protect your valuable data because we take this matter seriously. We understand the importance of maintaining confidentiality, integrity, and availability of your information, and we take extensive measures to ensure a secure environment for your annotation needs. ## Data Encrypted at Rest To provide a high level of protection, all data stored within our platform is fully encrypted at rest. This means that your sensitive information remains secure even when stored on our servers, providing an added layer of defense against unauthorized access. ## Compliance We recognize the significance of industry compliance in maintaining the trust and confidence of our users. Datasaur is proud to adhere to stringent security and privacy standards, including **SOC 2 Type II** and **HIPAA**. These certifications validate our commitment to implementing comprehensive security controls, ensuring the confidentiality, integrity, and availability of your data. ## Two-Factor Authentication (2FA) To further enhance the security of your account, we offer Two-Factor Authentication (2FA) as an additional layer of protection, specifically a **Time-Based One-Time Password (TOTP)**. 2FA adds an extra step to the login process, requiring users to provide a second form of verification with a unique code generated by an authenticator app, in addition to their regular login credentials. This helps prevent unauthorized access even if login credentials are compromised. For more detailed information, please access [this page](https://docs.datasaur.ai/security-and-compliance/security-and-compliance/2fa). --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.datasaur.ai/security-and-compliance/security-and-compliance.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.