Introducing CustomGPT.ai SOC 2 Type 2 Compliance and SSO (Single Sign-On) Authentication

This week we’re very pleased to announce two new features for CustomGPT.ai, SOC 2 Type 2 compliance for data security and Single Sign-On (SSO) Authentication!

As always, at CustomGPT.ai, we’re 1000% committed to bringing you the most accurate and trustworthy, best business-grade, zero-code platform for building custom GPT chatbots with your own data. 

We’re constantly listening to your requests, improving features and usability, and delivering security and accessibility, which is absolutely vital to our platform. 

Why does this matter?

We are incredibly excited to announce that CustomGPT.ai is now SOC 2 Type 2 compliant! This certification reinforces our commitment to data security and supports our customers in regulated industries by helping them meet their own compliance requirements. See full details of the certification in our SOC 2 Type 2 Trust Center.

CustomGPT SOC-2 Audit

Our new SSO feature allows organizations and their team members to securely and easily sign in to the CustomGPT.ai platform. In the next few weeks, we’ll additionally be rolling out SSO authentication for chatbot users, which we expect to be an extremely popular feature as more of our chatbot creators build bots focused on assisting very specific user groups such as internal audiences and students. 

Let’s look at these two important chatbot features in more depth.

SOC 2 Compliance

SOC 2 is an audit framework/report developed by the American Institute of Certified Public Accountants (AICPA) to ensure that third parties securely store or process client data. SOC 2 compliance varies from organization to organization but has five principles: security, confidentiality, availability, privacy, and processing integrity. It is designed to improve data security and help mitigate the risks of data breaches. 

For CustomGPT, SOC 2 Type 2 compliance makes our platform better and safer and allows us to work with customers who need this compliance from their vendors. SOC 2 Type 2 compliance should always be a primary consideration for security-minded organizations choosing a SaaS provider. See full details in the trust center.

Why should organizations care about SOC 2 Type 2 compliance?

  • Enhanced data security – SOC 2 Type 2 compliance ensures that CustomGPT.ai adheres to high standards of data security, protecting customer data from unauthorized access and breaches.
  • Compliance assurance – Knowing that CustomGPT.ai is SOC 2 Type 2 compliant may fulfill part of the compliance requirements of customers in regulated industries
  • Risk reduction – By choosing a SOC 2 Type 2 compliant provider like CustomGPT.ai, customers reduce their risk associated with data breaches and cyber threats.
  • Transparency – SOC 2 Type 2 reports provide transparency into CustomGPT.ai’s controls and processes, giving customers peace of mind about how their data is managed.

Single Sign-On (SSO) Authentication

CustomGPT.ai’s addition of SSO will make access to our platform simpler and more secure for individuals and teams. Our upcoming addition of SSO for chatbot and AI agent user access will be quite an important addition for several use cases. 

SSO for organizations and teams

Available on Enterprise CustomGPT.ai plans only:

  • Organizations can now use their Identity Provider (IdP) (such as Google, Okta, PingOne, etc) to enable easy and secure login for team members
  • After setting up SSO, team members will log in by entering their email, after which they will be redirected to authenticate using the selected method. No other passwords are required.

SSO access control for chatbots 

The upcoming addition to SSO for chatbot users is coming soon and is expected to be available in the next few weeks! We’re listening to our customers and paying attention to what matters most. 

As we work with educators, colleges, and universities exploring the advantages of custom GPTs for learning and faculty members and researchers apply for our AI research grants to use CustomGPT.ai, we can see a particular benefit to SSO for students accessing course-specific chatbots and assistants. 

As an example possible use case: A professor creates a chatbot course assistant using their own data and course resources, so the option for secure private access and the exclusion of users not enrolled in the course is critical. Even better, utilizing SSO means that students don’t have to create an account, and the course assistant doesn’t store student data. Instead, the university IdP grants access only to course-enrolled students. 

Watch this space for confirmation of the exact functionality of our SSO access controls for chatbot users when we launch this powerful new CustomGPT.ai feature in a few weeks. 

You can also take a look at our round-up of 21 CustomGPT.ai updates and new feature additions to ensure you’re taking advantage of what our secure, privacy-first platform can offer. 

Remember, if you’re not already creating GPT powered AI chatbots and assistants with your own data and CustomGPT.ai, we recently launched a 7-day free trial. 

Frequently Asked Questions

What is SSO (Single Sign-On)?

SSO is a user authentication process that allows a user to access multiple applications with one set of login credentials (such as username and password). This simplifies the login process by reducing the number of passwords users need to manage.

How do I set up SSO for my team in CustomGPT.ai?

Setting up SSO is straightforward. Navigate to the My Profile page in the CustomGPT.ai app dashboard, select ‘Single Sign On’, and follow the instructions for SSO integration. For detailed guidance, our support team is ready to assist you every step of the way. For more details, please check our user guide.

Which identity providers (IdPs) are supported by CustomGPT.ai for SSO?

CustomGPT.ai supports a wide range of identity providers (IdPs) for Single Sign-On (SSO), accommodating various enterprise needs. While our system is compatible with any IdP that adheres to standard SSO protocols, we currently offer detailed setup guides for three major IdPs: Google Workspace, Okta, and PingOne.

What are the benefits of using SSO with CustomGPT.ai?

Using SSO can enhance security by minimizing the number of attack vectors, simplify the login process for your team members, and reduce the burden of password management. It also ensures that access management can be centrally controlled through your identity provider.

Is SSO available to all CustomGPT.ai users?

Single Sign-On (SSO) functionality is an exclusive feature available only to our enterprise customers. This restriction is in place because SSO integration often involves complex setups that are typically necessary for larger organizations with advanced security and workflow integration needs. Smaller teams and individual users can use standard authentication methods provided by CustomGPT.ai. If you are interested in upgrading to an enterprise plan to avail of SSO and other advanced features, please contact our sales team for more information.

What happens if our IdP service is down? How will this affect logging into CustomGPT.ai?

In the unlikely event of an IdP service disruption, users might experience login issues. In such cases, please get in touch with our support team.

How do I troubleshoot issues related to SSO login?
If you encounter issues with SSO login, please check the following:

  • Ensure that the SSO configuration details are correctly entered.
  • Verify that your IdP service is operational.
  • Contact your IdP support for specific errors related to authentication.
  • If issues persist, contact CustomGPT.ai support for further assistance.

What is SOC 2 Type 2 compliance?

SOC 2 Type II compliance is a certification that attests not only to the establishment but also the effective operation of an organization’s information security measures over a defined period of time. It focuses on the same five trust service principles as Type I: security, availability, processing integrity, confidentiality, and privacy. Unlike SOC 2 Type I, which assesses the design of controls at a single point in time, SOC 2 Type II evaluates the operational effectiveness of these controls over a minimum period of six months.

Why is SOC 2 Type 2 compliance important for CustomGPT.ai users?

For users of CustomGPT.ai, SOC 2 Type II compliance offers enhanced assurance that the platform manages and protects customer data continuously and not just at a single moment. This ongoing compliance is crucial for maintaining the trust of users, particularly those who depend on CustomGPT.ai to handle sensitive or critical information securely over time. It provides users with the confidence that CustomGPT.ai is committed to high standards of data security and operational integrity.

How does SOC 2 Type 2 compliance affect the security of my data with CustomGPT.ai?

SOC 2 Type II compliance ensures that CustomGPT.ai not only has robust security processes in place but also that these are functioning effectively on an ongoing basis. The compliance covers how customer data is handled, processed, and stored, providing a higher level of security against unauthorized access, data breaches, and other potential threats. It confirms that CustomGPT.ai’s security practices are both proactive and reactive in safeguarding sensitive data.

What measures has CustomGPT.ai implemented to achieve SOC 2 Type 2 compliance?

To achieve SOC 2 Type II compliance, CustomGPT.ai has maintained a comprehensive, continuously monitored security program, facilitated by the use of Sprinto as its compliance platform. Sprinto allows for continuous control monitoring, automating 99% of checks, ensuring that CustomGPT.ai not only meets but sustains the stringent criteria required for compliance. This persistent evaluation of its security practices has been rigorously audited by an independent third-party to confirm their effectiveness over time, ensuring ongoing alignment with industry best practices and regulatory requirements.

Will there be any changes to how I use CustomGPT.ai services with this compliance?

No, there will be no changes to how you use CustomGPT.ai services due to SOC 2 Type 2 compliance.

Who can I contact for more detailed information about CustomGPT.ai’s security measures?

For more detailed information about CustomGPT.ai’s security measures, you can visit our trust center. Additionally, you can contact our support team — they are equipped to provide you with comprehensive details about our security practices and compliance status, and can address any specific concerns or questions you might have.

For more information or to get started, please contact our sales team .

Build a Custom GPT for your business, in minutes.

Deliver exceptional customer experiences and maximize employee efficiency with custom AI agents.

Trusted by thousands of organizations worldwide

Related posts

Leave a reply

Your email address will not be published. Required fields are marked *

*

3x productivity.
Cut costs in half.

Launch a custom AI agent in minutes.

Instantly access all your data.
Automate customer service.
Streamline employee training.
Accelerate research.
Gain customer insights.

Try 100% free. Cancel anytime.