ModelCharter

Is Decagon safe for work?

Medium risk · 0

Decagon · Customer support · facts partly unverified, check sources

Decagon is medium-risk for default at-work use (0/100): it has unclear training practices, though several facts are still unverified.

Watch out: Decagon confirms zero-day retention with its LLM providers and offers SSO with Okta and Entra, but its SOC 2, ISO 27001 and HIPAA claims appear only as badges without a primary source stating type, scope or date, and no subprocessor list or DPA was found publicly.

Data and compliance facts

Trains on consumer-tier data
Unverified
Trains on business-tier data
Unverified
Training opt-out available
Unverified
SOC 2 Type II
Unverified
ISO 27001
Unverified
ISO 42001 (AI management)
Unverified
GDPR Data Processing Addendum
Unverified
HIPAA BAA
Unverified
EU data residency
Unverified
SSO / SAML
Yes
Data retention
Zero-day retention is enforced at the LLM-provider layer; no retention period is published for Decagon's own storage.

Why it scores 0 out of 100

No risk factors flagged. Strong default data handling.