Trust center
What we control.
What we prove.
Dials runs the same controls a regulator would write down. Encryption, identity, audit, residency, certifications — and a place to read them all.
Posture
The numbers behind the platform.
Audit ledger
Hash-chained
Every accepted action writes a forward-only event.
Region pinning
Per-tenant
US, CA, EU regions for recordings and ledger.
Key custody
Customer-managed
Bring your own KMS on Enterprise plans.
Mean time to detect
< 5 min
Continuous monitoring with on-call rotation.
Controls
What we run.
Production controls that map cleanly to SOC 2, PCI DSS 4.0, GDPR, and the FCC's telecom obligations.
Encryption at restAES-256-GCM
Encryption in transitTLS 1.3 · SRTP
IdentityOAS DID + scoped sessions
Access loggingPer-action, hash-chained
Key managementOpenBao · Customer-managed on Enterprise
Vulnerability managementContinuous SAST + DAST
Incident response24/7 on-call · public post-mortems
Data residencyUS, CA, EU
Certifications
Where we are.
Where we're going.
Documents
Read what governs you.
Report a vulnerability.
Send a CVSS-scored report to security@dials.com. PGP key on request. Safe-harbor policy applies under our Responsible Disclosure terms.