Compliance & Data Privacy
MUNSIT is built to meet the requirements of regulated, production-grade Voice AI systems, where data privacy, security, and control are non-negotiable.HIPAA Compliance
MUNSIT supports HIPAA-compliant deployments through an explicit HIPAA Mode. When HIPAA Mode is enabled:- No call recordings are stored on MUNSIT servers
- Audio streams are processed in-memory only
- Zero persistent storage of voice data
- All data ownership remains with the customer
- No secondary usage of audio for training or analytics
- Customers retain full ownership of all audio, transcripts, and metadata
- No recordings are retained unless explicitly configured by the customer
- Deployment-level controls determine retention, logging, and access policies
- Suitable for air-gapped and sovereign environments
Security & Certifications
MUNSIT is designed with enterprise security standards from day one.- HIPAA — Certified
- SOC 2 — in progress
- ISO 27001 — in progress
- Strict access isolation per tenant
- Encrypted data in transit
- Environment-level security boundaries (SaaS, VPC, On-Prem)
- Operational auditability for enterprise customers
Built for Regulated Voice AI
MUNSIT is trusted in environments where:- Voice data is sensitive by default
- Retention must be explicitly disabled
- Infrastructure must support on-prem or sovereign hosting
- Compliance is enforced at the architecture level, not through policy documents
Customer Responsibility
Customers are solely responsible for:- The content generated by applications using MUNSIT
- Ensuring generated outputs comply with applicable laws, regulations, and industry standards
- Implementing appropriate human review, guardrails, and usage policies where required