Security & Compliance at Unique

Earning our customers' trust is key to us. That's why we have implemented and keep on developing technical and organizational measures to protect your data and ensure secure processing of information.

Chat Experience-1

Unique FinanceGPT: Secure, Accurate, and Reliable AI Platform

Our capabilities extend far beyond ChatGPT functions. Together with clients we build fast, accurate, compliant AI workforce with a strong focus on financial use cases.
Data Loss Prevention

We enable implementation of compliance tools to combat Data Loss Prevention (DLP) and ensure responsible usage.

RAG

We offer Retrieval Augmented Generation (RAG) of content available on the intranet.

Search Tool

We provide productivity enhancements thanks to optimized enterprise search tool.

Specialized Knowledge

We allow to configure Assistants for specific roles/contexts to retrieve accurate specialized knowledge.

Unique Meets the Highest Security & Compliance Standards

ENTERPRISE SECURITY
Microsoft Partner

Unique is a Microsoft partner and all data is stored on Microsoft Azure Cloud hosted in Switzerland.

Private Cloud

Our servers are located within Unique’s own private cloud, and we manage our APIs carefully to not allow any untrusted external connections.

Competent Team

Our ISMS is managed by a former SAP team making sure our software is updated regularly with the latest security patches.

Secured Access

Open.AI access is secured via Microsoft Switzerland (or Europe) and opt-out option for training purpose and prompt checking is available.

ENTERPRISE SECURITY
Microsoft Partner

Unique is a Microsoft partner and all data is stored on Microsoft Azure Cloud hosted in Switzerland.

Private Cloud

Our servers are located within Unique’s own private cloud, and we manage our APIs carefully to not allow any untrusted external connections.

Competent Team

Our ISMS is managed by a former SAP team making sure our software is updated regularly with the latest security patches.

Secured Access

Open.AI access is secured via Microsoft Switzerland (or Europe) and opt-out option for training purpose and prompt checking is available.

COMPLIANCE STANDARDS
ISO

We have officially received ISO 27001 and ISO 9001 certification, which regulate business quality, security and risks.

SOC 2

Unique has been certified by an independent audit company for SOC 2 Type 1 in December 2023. Unique’s team is currently working on the SOC 2 Type 2 report, which should be available in January 2025. 

Data Security

Your data is safe with Unique, because we are committed to ensuring up-to-date compliance with the General Data Protection Regulation (GDPR). 

Recording Consent

Unique’s GDPR-compliant process flow guarantees consent from all meeting attendees.

COMPLIANCE STANDARDS
ISO

We have officially received ISO 27001 and ISO 9001 certification, which regulate business quality, security and risks.

SOC 2

Unique has been certified by an independent audit company for SOC 2 Type 1 in December 2023. Unique’s team is currently working on the SOC 2 Type 2 report, which should be available in January 2025. 

Data Security

Your data is safe with Unique, because we are committed to ensuring up-to-date compliance with the General Data Protection Regulation (GDPR). 

Recording Consent

Unique’s GDPR-compliant process flow guarantees consent from all meeting attendees.

DATA SECURITY
Encryption

Any data and connections with Unique are secure using the latest encryption standards.

Data Access Policy

Data access and authorizations are managed on a need-to-know basis, and we apply the principle of least privilege.

Recordings

Recordings, transcripts, and analytics are encrypted in transit and at rest.

DATA SECURITY
Encryption

Any data and connections with Unique are secure using the latest encryption standards.

Data Access Policy

Data access and authorizations are managed on a need-to-know basis, and we apply the principle of least privilege.

Recordings

Recordings, transcripts, and analytics are encrypted in transit and at rest.

Get Our FREE Compliance Whitepaper

We share our collective experience in building secure and complaint GPT-based solutions for the financial industry.

Group 2341
Does Unique adhere to the EU AI Act?

Yes, we have performed a conformity assessment for each use case. In addition, we are in the process of obtaining a legal opinion from an external lawyer to also have an independent assessment.


Is Unique GDPR compliant?

Yes, we are both GDPR and nDSG compliant. We have implemented technical measures such as data minimization as well as organizational measures like compliance and awareness training.

Have you engaged a third party to assess your organization's privacy compliance?

Yes, ISO 27001 and also SOC 2 Type 1.

How is Customer Identifiable Data (CID) handled at Unique?
  1. CID is pseudonymized, anonymized, or encrypted through technical measures,

  2. Additional organizational measures are taken (e.g., careful password management, regulation of scope of access, etc.) and

  3. contractual measures to ensure confidentiality must be implemented (e.g., note in the contract that CID will be processed by data processors abroad, with reference to the measures you have taken to ensure confidentiality in accordance with FINMA requirements).

What certifications (e.g., audit, quality, data protection) does Unique comply with?
ISO 9001, ISO 27001, SOC 2 Type 1, ISAE 3402, FINMA outsourcing circular 2018/3 report.
 
Do you review your applications for security vulnerabilities and address any issues prior to deployment to production?

Yes, we conduct automated pentests and Bug bounty programs.