Confidentiality: Shareable
KoeIQ Security Brief
For procurement, legal, and infosec teams | Version: March 2026
1. Deployment options
KoeIQ is delivered as SaaS. All data is stored in AWS ap-northeast-1 (Tokyo) region. On-premises and VPC PrivateLink options are available under enterprise contracts.
| Option | Description | Availability |
|---|---|---|
| Multi-tenant SaaS | Tenant-isolated data. Included in all plans. | Standard |
| Single-tenant SaaS | Dedicated ECS cluster and RDS instance. | Enterprise |
| VPC PrivateLink | API access without traversing the public internet. | Enterprise |
| On-premises | Deployment into customer-managed infrastructure. | Contact us |
2. Data flow
Browser ──upload──▶ FastAPI (ECS) ──S3──▶ SQS ──▶ Worker (ECS) Worker ──audio──▶ AmiVoice API (Japan) ──transcript──▶ Worker Worker ──transcript (PII-scrubbed)──▶ OpenAI API ──analytics──▶ RDS PostgreSQL Browser ──live──▶ wss://acp-api.amivoice.com/v1/nolog/ (direct WebSocket)
Audio files are stored in S3 (ap-northeast-1). Transcripts pass through the PII redaction pipeline before being sent to OpenAI. Raw transcripts are stored in RDS and access-controlled by role.
3. Encryption at rest & in transit
| Asset | At rest | In transit |
|---|---|---|
| Audio files (S3) | ✓ AES-256 (SSE-S3) | ✓ TLS 1.2+ |
| Transcripts & analytics (RDS) | ✓ AES-256 (AWS RDS encryption) | ✓ TLS 1.2+ (VPC-internal) |
| Secrets (Secrets Manager) | ✓ AWS KMS managed key | ✓ TLS 1.2+ |
| Browser ↔ API | ✓ TLS 1.3 (ALB) | ✓ N/A |
4. Retention controls
Administrators configure organisation-wide default retention. Individual call retention can be overridden (extended for legal holds or shortened). Audio, transcripts, and analytics are automatically purged on expiry. All changes are recorded in the immutable audit log.
- ✓Default retention period: admin-configured (e.g. 90 days)
- ✓Per-call override: admin only
- ✓Deletion: S3 object deletion + RDS record hard delete
- ✓Deletion events are recorded in the audit log
5. Subprocessor list
KoeIQ uses the following subprocessors. Data Processing Agreements (DPAs) are in place with each.
| Service | Provider | Country | Purpose | Data sent |
|---|---|---|---|---|
| AmiVoice | Advanced Media Inc. | Japan | Audio transcription (batch & live) | Audio files / PCM audio stream |
| OpenAI | OpenAI, L.L.C. | USA (zero data retention API agreement) | Summary, emotion, intent, quality analytics | PII-redacted transcripts only |
| Amazon Web Services | Amazon Web Services, Inc. | Japan (ap-northeast-1 Tokyo) | Cloud infrastructure (compute, storage, DB) | All data (encrypted at rest & in transit) |
| Resend | Resend, Inc. | USA | Transactional email (auth, notifications) | Email address only |
6. Access control model
| Role | Call data | Raw transcript | Analytics & scores | Export | User mgmt |
|---|---|---|---|---|---|
| Admin | ✓ | ✓ | ✓ | ✓ | ✓ |
| Supervisor | ✓ | ✓ | ✓ | ✓ | — |
| QA Reviewer | ✓ | ✓ | ✓ | ✓ | — |
| Agent | Own only | — | Own only | — | — |
7. Data residency
Audio, transcripts, and analytics are stored exclusively in AWS ap-northeast-1 (Tokyo, Japan).
No audio file is transferred outside the Japan region. Only PII-redacted transcript text is sent to OpenAI, subject to OpenAI's zero data retention API policy.
Security enquiries
For procurement assessments, DPA requests, or security reviews, contact security@koeiq.com.