Security Protocol

ClearPath AI employs an edge-first security architecture. All video processing and hazard detection occurs at the property level, ensuring that sensitive visual data never traverses the public internet. Only anonymized, encrypted metadata is transmitted to our cloud infrastructure for dashboarding and reporting purposes.

All data at rest is protected with AES-256 encryption. Data in transit is secured via TLS 1.3, ensuring end-to-end confidentiality between edge devices, property gateways, and our cloud services. Encryption keys are managed through a dedicated key-management service with automatic rotation.

ClearPath AI is pursuing SOC 2 Type II certification, with our compliance program actively aligned to the Trust Services Criteria for security, availability, and confidentiality. Our controls framework is designed to meet and exceed the requirements of this standard.

Our information-security management system is aligned with ISO 27001 standards. We maintain comprehensive security policies, risk assessments, and control inventories that map to the ISO 27001 Annex A control set, providing enterprise-grade assurance to our hotel partners.

We conduct regular penetration testing through independent third-party security firms and perform ongoing vulnerability assessments across our infrastructure. Security audits are carried out on a quarterly basis, and findings are remediated according to strict SLA timelines. Our engineering team follows secure development lifecycle practices, including mandatory code review and automated dependency scanning.

For security inquiries, vulnerability reports, or to request our security documentation, please contact us at security@clearpath-ai.com.