# Security & Privacy

StackAI prioritizes data protection and compliance, making it suitable for industries with stringent regulatory requirements. Key security features include:

* **Compliance Certifications**: Adherence to SOC 2 Type II, HIPAA, and GDPR standards ensures that data handling meets global regulatory requirements.
* **Guardrails**: LLMs can deviate from their initial requirements by answering questions they were not prompted to answer. Guardrails allow our customers to ensure LLMs do not answer questions and topics they are not supposed to reply.
* **PII Protection**: Built-in mechanisms detect and mask Personally Identifiable Information (PII), safeguarding sensitive data during processing.

![](/files/0wEibrYutpYdTyZR6LRB)

[PII protection at the LLM node](/workflow-builder/core-nodes/ai-agent-node/llm-hosting-and-governance/llm-provider-governance.md):

* Data Retention Policies: Organizations can define data retention durations, ensuring data is stored only as long as necessary.
* No Data Training: StackAI ensures that user data is not used to train AI models as part of its enterprise agreements with providers, maintaining data confidentiality.

#### Multi-Factor Authentication

To turn on MFA, go to Settings -> Feature Access -> Authentication. Click manage and turn on MFA. This will apply to all users in your organization.

<figure><img src="/files/hocovOx19Jv2fM4pXY75" alt=""><figcaption></figcaption></figure>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.stackai.com/welcome-to-stackai/security-and-governance/security-and-privacy.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.