Does Slide Creator use my presentation content to train AI models?

No. Slide Creator does not use customer content — including presentation text, uploaded documents, CRM data, or brand assets — to train, fine-tune, or improve any AI model. Customer data is processed solely to generate the requested presentation output and is not retained for training purposes.

What encryption does Slide Creator use?

Slide Creator uses AES-256 encryption for all data at rest and TLS 1.3 for all data in transit. Encryption keys are managed via a dedicated key management service with 90-day automatic rotation.

Trust & Safety

Security & Compliance

Enterprise presentation content contains proprietary data. Here is exactly how Slide Creator protects it — with specific controls, certifications, and technical specifications.

SOC2 Type II Certified

AES-256 at rest

TLS 1.3 in transit

GDPR & CCPA compliant

SOC2 Type II Certification

SOC2 Type II (System and Organization Controls 2, Type II) is issued by AICPA-accredited independent auditors and requires a continuous 6-month review of operational controls — distinguishing it from SOC2 Type I, which is a single point-in-time assessment. Slide Creator's SOC2 Type II certification covers all five Trust Service Criteria:

✓

Security

System protected against unauthorized access, use, or modification

✓

Availability

System available for operation and use as committed (99.9% SLA)

✓

Confidentiality

Information designated as confidential is protected as agreed

✓

Privacy

Personal information collected, used, retained per privacy notice

✓

Processing Integrity

Processing is complete, valid, accurate, timely, and authorized

SOC2 Type II audit reports are available to enterprise customers under NDA upon request. Contact security@slidecreator.com for the current audit report.

Encryption

Data at Rest — AES-256

All customer data stored on Slide Creator infrastructure is encrypted using AES-256 (Advanced Encryption Standard with 256-bit keys). This is the same standard used by the U.S. government for top-secret classification.

✓ Presentation files and generated PPTX
✓ Uploaded documents (PDF, Word, CSV)
✓ Brand assets (fonts, logos, color palettes)
✓ CRM data pulled from integrations
✓ User account data and settings

Data in Transit — TLS 1.3

All communications between your browser, our API, and third-party integrations are encrypted using TLS 1.3 (Transport Layer Security, version 1.3). TLS 1.2 is deprecated on all Slide Creator endpoints.

✓ Browser → Slide Creator API
✓ Salesforce / HubSpot API calls
✓ Webhook deliveries
✓ PPTX file download
✓ HSTS enforced, TLS 1.2 rejected

AI Data Usage Policy

Your content is never used to train AI models.

Slide Creator processes your presentation content (text, documents, data) exclusively to generate the requested output. Customer data is not retained for AI training, model improvement, fine-tuning, or any benchmarking purpose. This policy applies to all plan tiers including free accounts.

✓ Processed

Content used to generate your slide output

✗ Not Stored

Input content not retained after processing

✗ Not Trained

Never used for model training or improvement

Access Controls

Single Sign-On (SSO)

SAML 2.0 / OIDC SSO via Okta, Azure AD, Google Workspace. Enforce MFA through your identity provider.

Role-Based Access (RBAC)

Viewer, Editor, Admin, and Brand Manager roles. Lock templates, restrict brand asset modification, control export permissions.

Audit Logs

Immutable logs of every login, generation, export, and settings change. Exportable for compliance review. Retained 12 months.

Data Residency

Choose US (AWS us-east-1) or EU (AWS eu-central-1) data residency on Enterprise plans. GDPR Article 46 transfer mechanisms documented.

Security FAQs

Is Slide Creator SOC2 Type II certified?

Yes. Slide Creator maintains SOC2 Type II certification issued by an independent AICPA-accredited auditor. SOC2 Type II involves continuous 6-month audit periods covering Security, Availability, Processing Integrity, Confidentiality, and Privacy Trust Service Criteria. The current audit report is available to enterprise customers under NDA.

Does Slide Creator train AI on my presentation content?

No. Customer content is processed solely to generate the requested presentation output and is never used for AI model training, fine-tuning, or benchmarking. This applies to all tiers including free accounts.

Is Slide Creator GDPR compliant?

Yes. Slide Creator complies with GDPR (EU 2016/679) and offers EU data residency on Enterprise plans. We maintain Data Processing Agreements (DPAs) available for signing. Standard Contractual Clauses (SCCs) are included for cross-border data transfers. See our Privacy Policy for full details.

How do I request a security review or penetration test results?

Enterprise prospects can request our SOC2 Type II audit report, penetration test executive summary, security questionnaire responses (CAIQ, SIG), and DPA by contacting security@slidecreator.com. All documents are provided under NDA.