Trust Layer: Secure, tailored processing for your data
At ayona, we prioritize your data security, ensuring that sensitive information is handled with the utmost care and in full compliance with data protection regulations.
Trust Layer: Secure, tailored processing for your data
In today’s data-driven world, customer feedback is invaluable—but the way you manage and process this data can make all the difference. For this reason, ayona provides you with the possibility to opt for a trust layer designed to safeguard your most sensitive information while delivering deep insights from customer feedback across multiple platforms. Whether your data originates from public sources like app store reviews or private channels like internal emails, our trust layer ensures that your data is handled with a high level of security and compliance.
Comprehensive PII Removal and Data Minimization
As a first step in our data processing pipeline, we automatically remove all Personal Identifiable Information (PII) using an advanced PII entity recognition system. This crucial process occurs before any feedback data is stored in our databases, significantly reducing the risk of personal data entering our systems. Our goal is to ensure that even if feedback contains PII, it is thoroughly anonymised before any further processing or storage takes place.
In addition, our APIs are built with data minimisation principles at their core. We do not accept personal data fields through our API, and when querying data from sources that may include personal information, we are designed to ignore such fields without processing them. This approach ensures that only the necessary data is processed, aligning with both GDPR and best practices in data protection.
Our Sensitivity Levels
The core of the trust layer is a flexible sensitivity management system that allows you to define, for each connected source individually, how your data is processed. Public and private data are treated with the same rigorous PII removal process, ensuring consistent privacy protection across all data types.
PII Masking
At this level, all feedback data undergoes a standard PII filtering process to remove personal identifiers before storage. If feedback contains PII, it is masked and securely stored for potential later processing. Feedback without PII can be processed immediately.
- Essential Plan: Allows immediate processing of feedback without PII. Feedback containing PII is masked and stored, and you can upgrade to a team plan to process it later.
- Team Plan: Required for processing feedback that contains PII beyond the initial masking.
When to Use:
- When processing feedback from public sources like app store reviews or social media posts, where PII is less likely to be present
- Ideal for businesses looking to analyse non-sensitive feedback immediately while securing sensitive data for future processing
PII & Custom Masking, Global Processing
This level is designed for more sensitive data that may contain identifiable information. In addition to our standard PII filtering, Level 2 allows you to define custom entities that should be masked according to your specific needs. Once the data is fully anonymised, it can be processed by a cutting edge large language model (LLM) hosted in a global region to generate insights or stored securely for later analysis. This level provides a balance between privacy and flexibility, making it suitable for a wide range of feedback sources.
When to Use:
- When handling feedback that may contain sensitive customer information from emails, contact forms, or semi-private channels
- Ideal for businesses that require additional customisation in data anonymisation while maintaining the ability to process insights
PII & Custom Masking, European Processing
Level 3 offers the highest level of privacy and compliance, tailored for the most sensitive internal data, such as feedback collected through internal communication channels or customer surveys. In this level, data undergoes the same advanced PII filtering and allows for custom entity masking while all processing occurs exclusively within european data centers. This level is designed for industries with stringent data protection requirements, ensuring that sensitive feedback is handled with the highest degree of security.
When to Use:
- When processing highly confidential internal feedback, especially in regulated industries like finance, healthcare, or government sectors
- Ideal for organisations that require the highest level of data protection and compliance with European data regulations
Levels 2 and 3 are available exclusively in our team plans, providing your business with the advanced data security features necessary for processing sensitive feedback. Whether you’re a small business or an enterprise, the trust layer offers a tailored solution to protect your customer data while delivering actionable insights.