Is Decagon safe for work?
Medium risk · 0Decagon · Customer support · facts partly unverified, check sources
Decagon is medium-risk for default at-work use (0/100): it has unclear training practices, though several facts are still unverified.
0
Medium risk
Watch out: Decagon confirms zero-day retention with its LLM providers and offers SSO with Okta and Entra, but its SOC 2, ISO 27001 and HIPAA claims appear only as badges without a primary source stating type, scope or date, and no subprocessor list or DPA was found publicly.
Data and compliance facts
- Trains on consumer-tier data
- Unverified
- Trains on business-tier data
- Unverified
- Training opt-out available
- Unverified
- SOC 2 Type II
- Unverified
- ISO 27001
- Unverified
- ISO 42001 (AI management)
- Unverified
- GDPR Data Processing Addendum
- Unverified
- HIPAA BAA
- Unverified
- EU data residency
- Unverified
- SSO / SAML
- Yes
- Data retention
- Zero-day retention is enforced at the LLM-provider layer; no retention period is published for Decagon's own storage.
Why it scores 0 out of 100
No risk factors flagged. Strong default data handling.