Security & Compliance

Your battery data, secured.

Data security isn't an afterthought, it's the foundation Voltaiq is built upon.  

Trusted by global industry leaders and Fortune 500 companies, Voltaiq adheres to the most rigorous security standards. Our security-first approach ensures the safest environment for you to collaborate with your team and external partners on critical battery quality data.

Security at a glance.

  • Your data and IP remain yours, and are always under your control
  • Single-tenant — dedicated infrastructure for each customer
  • Data is encrypted at rest and in flight
  • Secure HTTPS browser access
  • Outbound-only data upload — no inbound connections to your network are required
  • Customer-controlled user access and permissions
  • Your data never trains any public AI model

    Regardless of your hosting environment, your data is never visible or accessible by Voltaiq staff without your express permission. 

Black and blue gradient shield with a key
Move fast, stay secure

Security standards and practices

Voltaiq is compliant with all regulations necessary for a secure enterprise AI platform, designed to easily integrate with your current infrastructure. We have worked with and satisfied the compliance and security requirements of leading OEMs, battery companies and software partners, including global automakers and AWS.

Security and reliability

Voltaiq offers many security features including SAML SSO, robust authentication, and role-based access controls.

add remove
Voltaiq_Pictogram_artboards white-31

Security and reliability

Voltaiq offers many security features including SAML SSO, robust authentication, and role-based access controls. All these security features are paired with the most secure application model for day-to-day usage by your end users. 

Voltaiq customers have control over sharing, downloading, and access permissions at the admin level—ensuring your data remains secure.

Cloud security

Built on the foundations of SOC 2, ITAR, GDPR, and AWS security best practices.

add remove
private

Cloud security

Voltaiq's platform is built on AWS, with architecture and operational practices aligned to SOC 2, ITAR, GDPR, and AWS security best practices. All customer data is encrypted in transit and at rest. Each customer environment is deployed in its own Virtual Private Cloud, with no shared compute or storage resources across tenants. Your instance can be deployed in the AWS region of your choice to satisfy local data residency requirements.

The full Voltaiq software stack undergoes regular penetration testing to ensure ongoing security.

Compliance

Voltaiq holds SOC 2 Type II certification, conducts annual third-party penetration testing, and is compliant with GDPR and ITAR.

add remove
Security Compliance

Compliance

Voltaiq holds a SOC 2 Type II certification, audited annually by an independent third party. We conduct annual third-party penetration testing, and are compliant with GDPR and applicable regional data regulations. We support ITAR compliance requirements for customers operating in defense-adjacent industries.

We are committed to protecting your intellectual property and battery data, and we make continual improvements to platform security in accordance with the latest industry standards and best practices.

AI security

Voltaiq's AI is built on single-tenant architecture — your data stays in your environment and cannot surface in AI outputs seen by other customers.

add remove
brain-circuit-sharp-thin

AI security

Voltaiq's AI capabilities run on the same single-tenant architecture as the rest of the platform — your data is never pooled with other customers' data, and AI features have no cross-customer visibility. Customer data is never used to train or fine-tune any public  AI model. Voltaiq contracts directly with AI infrastructure providers under enterprise agreements that explicitly prohibit training on customer data. This means your proprietary test data, battery designs, and manufacturing insights cannot inform AI outputs seen by any other Voltaiq customer.

 

Fit and function

Designed to fit with your
existing systems.

Voltaiq has an extensive set of pre-built integrations that cover the equipment and tools your teams are using, with an API that enables flexible custom integrations.

MACCOR Logo
Biologic Logo
Arbin Logo
NOVONIX Logo
Chroma Logo
AWS Logo
Siemens Logo
Thermo Fisher Logo
SAP Logo
PDF Solutions Logo
Alchemy Logo
Monolith Logo
MathWorks Logo
Batemo Logo
Citrine Logo
Amazon
Keysight Technologies Logo
AND Logo
Gamry Logo
Kataoka Logo
Toyo Logo
Webasto Logo
INNOVEX Logo
Neware Logo
Bitrode Logo
WONIK PNE Logo
Admiral Instruments Logo
Digatron Logo
LANDT Logo
PEC Logo
NI Logo

Frequently Asked Questions

Trusted by global industry leaders and Fortune 500 companies, Voltaiq adheres to the most rigorous security standards. 

What security certifications does Voltaiq hold?

Voltaiq holds a SOC 2 Type II certification, audited annually by a third party, and conducts annual third-party penetration testing. We are compliant with GDPR and other regional data regulations, and support ITAR compliance requirements. Our platform supports SSO and identity federation via SAML 2.0, including Okta, Azure AD, Microsoft 365, and other standard identity providers. Secure data upload is handled via SSH & SFTP encryption. Full technical documentation is available upon request.

How does Voltaiq control access to customer information?

At Voltaiq, we prioritize the security and privacy of your data. Access to customer data is strictly limited to authorized Voltaiq personnel who are directly involved in servicing your account or maintaining our infrastructure. We do not view, access, or use customer data unless it is absolutely necessary to address a specific customer request or resolve an issue. Additionally, your data is never used to train any public AI model, including foundation models — Voltaiq contracts directly with AI providers under enterprise agreements that prohibit training on customer data. Your trust is our top priority, and we are committed to upholding the highest standards of data protection.

How is my company’s data segmented from other client data?

Every Voltaiq customer system is deployed in its own Virtual Private Cloud, with all data encrypted in flight and at rest. No computing resources are shared across customer systems, data storage or otherwise. Your instance can also be deployed in the AWS region of your choice, worldwide, to satisfy local data residency requirements.

Has Voltaiq ever been subject to a security breach?

No, Voltaiq has never been subject to a security breach.

What policies and agreements does Voltaiq have in place with and/or for employees to protect customer information?

Voltaiq has a suite of information security policies including Acceptable/Technology Use, Data Classification and its General Security policy regarding security measures to protect customer and company information; and procedures regarding handling such information. 

Employee access to customer data is limited to only those team members involved with launching, maintaining, and servicing a customer account, and data is only accessed as required to perform one of these functions.

Employees must acknowledge our information security policies and employee handbook, and sign legal agreements including a confidentiality agreement. Voltaiq performs background checks on all new hires, in addition to requiring completion of information security training upon hiring and annually thereafter.

What does Voltaiq offer for redundancy/backups of data?

Voltaiq's cloud environment features both redundancy within a data center, and the ability to restore (disaster recovery) in a separate cloud availability region. Backups, encrypted-at-rest are stored in an alternate region. In addition to processed data stored in the Voltaiq system, Voltaiq also retains a cloud backup of all original "raw" battery tester data files.

What type of Admin rights would we have in the Voltaiq Platform?

Adding/managing/deactivating user accounts
Voltaiq customers have full control over adding/managing/deactivating their user accounts. We have robust permissions structures that allow for many variable scenarios of data access and permissions. Single sign on (SSO) can also be configured so that deactivation occurs automatically with a company's SSO managed credentials.

Administrative functions
Administrators of the software on the customer side have full access to user permissions, data permissions, analytics permissions etc.

Sharing data
Link sharing of any data is restricted to the permissions of the user receiving the data, users that do not have permissions to view data cannot do so through any links or any other means.

Access to classified information
Permissioning can be easily set up which puts data into classified categories, allowing only access for users with correct credentials.

Password requirements
Password requirements are set by the customer's organization, however we strongly recommend our customers follow best practices which involve long randomized passwords and scheduled password changes. Single sign on (SSO) is supported.

How will our data be handled by Voltaiq at the conclusion of our engagement?

Voltaiq deletes customer data along with the customer instance and VPC upon conclusion of our commercial engagement unless otherwise directed by the customer.

Icon

Battery AI is here. It's time to modernize and accelerate your program.

Ready to get started?