How long does deployment take?

Most workspaces are live and answering real customers by the end of the first week, while WhatsApp Business verification runs in parallel.

Is my business data safe with Niyog AI?

All data is encrypted at rest and in transit, hosted in India, and every agent action is audit-logged.

Can I cancel my Niyog AI subscription anytime?

Yes — 7-day exit guarantee. Cancel within the first 7 days for a full refund, no questions asked.

Trust Center

Procurement-ready. Built to be reviewed.

Everything your security, legal, and procurement teams need — in one place. India DPDP and EU GDPR. Data residency choices. Enterprise contracts on request.

Request the package →Deep security details Live status

What we do by default

The posture every workspace gets, day one.

Encrypted in transit and at rest

TLS 1.2+ on every API. AES-256 on every Postgres volume. Anthropic, Razorpay, and Meta endpoints all enforce TLS pinning.

Data residency: India default, EU/US on Enterprise

Customer data lives in our primary Hostinger India region. EU and US residency available on the Enterprise tier — DPA spells out the chosen region.

India DPDP + EU GDPR compliant

Standard Contractual Clauses (2021) and UK Addendum available in our DPA. India Digital Personal Data Protection Act adherence by design. CCPA on request.

Daily backups, point-in-time restore

Postgres pg_dump every 02:00 UTC. 30-day retention. Off-site replication on Enterprise. RPO ≤ 24h, RTO ≤ 4h.

Per-workspace isolation

Every paying client gets a logically isolated workspace. Cross-tenant access requires explicit support tickets logged in the audit trail.

Audit log export (CSV)

Every agent action, every customer message, every admin operation — exportable as ISO 8601 UTC CSV by the workspace admin.

Compliance posture

We publish the roadmap honestly.

Pending items are scoped commitments, not aspirational bullet points.

India DPDP Act 2023Compliant by design

EU GDPR (Art. 28 DPA, SCCs)Available on request

UK GDPR + UK AddendumAvailable on request

CCPA / CPRAAvailable on request

SOC 2 Type IIRoadmap — 2026 H2

ISO 27001Roadmap — 2027 H1

HIPAANot currently scoped

Contract package

Everything procurement asks for.

Master Service Agreement (MSA)

Enterprise customer agreement covering term, IP, liability cap, indemnity, termination.

→

Data Processing Agreement (DPA)

Article 28 GDPR-compliant DPA with SCCs (2021) and UK Addendum. India DPDP Schedule included.

→

Service Level Agreement (SLA)

Uptime commitment, response-time tiers, service credit schedule. Published below for Growth and Scale; bespoke for Enterprise.

→

Subprocessor list

Anthropic (AI), Meta (WhatsApp), Razorpay (payments), Hostinger (hosting), n8n (orchestration). Full list with regions in /security.

→

Service Level Agreement

Honest numbers. Sustainable ones.

We commit to what we can sustain, not what sounds good in a deck.

Plan

Uptime

Response

Credits

Starter

99.0%

Best effort, business hours

N/A

Growth

99.5%

< 8h business hours

5% / month per 1% below SLA

Scale

99.5%

< 4h business hours

10% / month per 1% below SLA

Enterprise

99.9%

< 1h, 24/7 on-call

Bespoke; up to 25% / month

All times in UTC · Service credits issued against the affected month’s subscription fee · Full SLA text in your MSA on signing

Incident response

Critical incidents are detected by Sentinel (our 24/7 anomaly watcher) and surfaced on /status within 15 minutes of detection. Customer notification by WhatsApp + email if their workspace is affected. Post-mortem published within 5 business days for any Severity 1.

Security contact · security@niyogai.com

Want the full security packet, MSA, and DPA for procurement review?

Request the package →

Most enterprise prospects get the package within 24 hours