Enterprise-Grade Safeguards for Insurers
SigmaSight is SOC 2 Type II audited across the trust principles of security, privacy, and confidentiality.
Independent auditors confirm that our controls operate effectively — ensuring that sensitive claims data is always protected. But for insurers, trust goes further than controls. It also means ensuring fairness in AI and responsible data use at every step.
Enterprise-Grade Safeguards for Insurers
Annual independent audits verify that our security, confidentiality, and availability controls operate effectively.
All data is encrypted in transit and at rest.
Built on AWS, leveraging world-class redundancy, disaster recovery, and physical security protections.
Role-based access, least-privilege permissions, continuous monitoring, and logging for all system activity.
Multi-factor authentication and SSO (SAML/OAuth) available to align with enterprise identity systems.
We do not sell, share, or retain carrier data beyond contracted use. Customer data remains private and controlled at all times.
Confidentiality is foundational — protecting our customers, their insureds, and their claims data at every step. We apply the following safeguards:
Case data is processed only to generate Offer Packages and never retained for unrelated use.
Signed Zero Data Retention (ZDR) agreements guarantee that no third-party retains or reuses your data.
Each carrier’s data is kept separate; no cross-client commingling or shared training.
Services are delivered solely to support your litigation strategy, with strict confidentiality agreements and limited access protocols.
Customer data can be securely deleted atany time, or at the end of the engagement.
that sensitive legal materials remainprivate, defensible, and fully undercarrier control.
We recognize that fairness is a critical concern when applying AI in claims:
Not a Decision Engine — Offer Packages assist defense-side negotiation, never replace human judgment
Bias Safeguards — model filters, protected-term scanning, quarterly audits
Auditability — all outputs traceable to underlying evidence
Consistency Across Cases — outputs are evidence-based and subject to human approval
Our commitment goes beyond technology:
Not a Decision Engine — Offer Packages assist defense-side negotiation, never replace human judgment
Bias Safeguards — model filters, protected-term scanning, quarterly audits
Auditability — all outputs traceable to underlying evidence
Compliance
To support carrier diligence, we provide tailored resources:
Security & Compliance Brief — SOC 2 controls, encryption, and audit scope.
Responsible Data Use in AI — how we handle data safely and improve responsibly.
Fairness Without Compromise — bias safeguards and auditability measures.
Confidentiality Brief — controlled access and contractual safeguards.
Each resource is available under NDA to compliance, and security reviewers.
Security, privacy, fairness, and privilege are not afterthoughts — they are pillars of SigmaSight. Our independent audits, safeguards, and contractual protections give carriers confidence that their data, their strategy, and their clients are handled with the highest standards of trust.
