This page provides information on compliance certifications and security controls that are supported by Dialogflow. Dialogflow is comprised of other Google Cloud services, such as Speech-to-Text and Text-to-Speech. Any certifications, security controls, and government authorizations cover Dialogflow in its entirety.
Certifications
Dialogflow is compliant with the following:
| Compliance Certification | Conversational Agents (Dialogflow CX) (including generative features) | Dialogflow ES |
|---|---|---|
| HIPAA | ✔ | ✔ |
| ISO 27001, ISO 27017, ISO 27018, and ISO 27701 | ✔ | ✔ |
| SOC 1, SOC 2, SOC 3 | ✔ | ✔ |
Security controls
Dialogflow provides the following security controls:
| Security controls compliance | Conversational Agents (Dialogflow CX) (including generative features) | Dialogflow ES |
|---|---|---|
| Data Residency | Regionalization and location settings | Regionalization and data residency |
| Customer-managed encryption keys (CMEK) | Customer-managed encryption keys (CMEK) | - |
| VPC Service Controls (VPC-SC) | Using VPC Service Controls | Using VPC Service Controls |
| Access Transparency | Access Transparency | - |
Government authorizations
Dialogflow has received the following authorizations:
| Authorization | Conversational Agents (Dialogflow CX) (excluding generative features) | Dialogflow ES |
|---|---|---|
| FedRAMP Moderate | Authorization | - |