Your data. Our discipline.
Roam handles sensitive spatial data with the controls enterprise programs require.
Data Ownership
All captured data and deliverables are owned by the customer. Roam does not retain, resell, or use customer data for any purpose beyond program execution. Deletion on request.
Privacy Processing
Automated PII redaction is applied to all visual data by default. Faces, license plates, and configurable sensitive markers are detected and redacted before human review or delivery. Redaction reports with detection counts and QA sampling are available.
Secure Transfer
Data is encrypted in transit (TLS 1.3) and at rest (AES-256). Deliveries include SHA-256 checksums and integrity manifests. We support direct download, S3/GCS/Azure bucket delivery, and physical media for air-gapped environments.
Access Controls
Portal access is role-based with audit logging. MFA is supported. SSO integration is available for enterprise accounts.
Compliance Posture
Roam is implementing compliance-ready security controls aligned with SOC 2 Type II requirements. We are currently pursuing formal certification. Our architecture is designed for GDPR compliance, including data residency controls and data processing agreement support.
Confidential & Sensitive Programs
Roam supports NDA-first engagement, stealth program requirements, and restricted-environment capture. Contact us to discuss specific security requirements.
Frequently asked questions
- Can we get raw, unredacted data?
- Yes, if your use case requires it and data handling terms support it.
- Do you retain copies of our data?
- Only for active program processing. All data is purged per agreed retention policy.
- Can you capture in restricted or classified environments?
- Contact us to discuss specific requirements, clearance needs, and access constraints.
Ready to capture?
Tell us about your environment, required outputs, and timeline. We’ll scope a program and mobilize.
Or email programs@roamlabs.ai