This page provides information on compliance certifications and security controls that are supported by Dialogflow CX. Dialogflow is comprised of other Google Cloud services, such as Speech-to-Text and Text-to-Speech. Any certifications, security controls, and government authorizations cover Dialogflow in its entirety.
Certifications
Dialogflow CX is compliant with the following:
| Compliance Certification | Dialogflow CX (including generative features) | Dialogflow ES |
|---|---|---|
| HIPAA | ✔ | ✔ |
| ISO 27001, ISO 27017, ISO 27018, and ISO 27701 | ✔ | ✔ |
| SOC 1, SOC 2, SOC 3 | ✔ | ✔ |
Security controls
Dialogflow CX provides the following security controls:
| Security controls compliance | Dialogflow CX (including generative features) | Dialogflow ES |
|---|---|---|
| Data Residency | Regionalization and location settings | Regionalization and data residency |
| Customer-managed encryption keys (CMEK) | Customer-managed encryption keys (CMEK) | - |
| VPC Service Controls (VPC-SC) | Using VPC Service Controls | Using VPC Service Controls |
| Access Transparency | Access Transparency | - |
Government authorizations
Dialogflow CX has received the following authorizations:
| Authorization | Dialogflow CX (including generative features) | Dialogflow ES |
|---|---|---|
| FedRAMP High | Authorization | - |