Answers to the most common questions about how ArcPrime protects your data, handles compliance, and keeps your IP safe.
π· The ArcPrime Settings page showing the Security section with encryption status, data residency, and compliance badges
Is ArcPrime SOC 2 compliant?
Yes. ArcPrime maintains SOC 2 Type II compliance, which is audited annually by an independent third party. You can request a copy of the most recent SOC 2 report by contacting your account manager or emailing [email protected].
Is ArcPrime ISO 27001 compliant?
Yes. ArcPrime is ISO 27001 certified, which means our information security management system meets international standards for protecting sensitive data. Contact your account manager or email [email protected] to request a copy of the certificate.
How is my data encrypted?
All data is encrypted at rest and in transit. Data in transit uses TLS 1.2 or higher. Data at rest is encrypted using AES-256 encryption. Encryption keys are managed through a dedicated key management service and rotated on a regular schedule.
Is my organization's data separated from other customers?
Yes. ArcPrime enforces strict workspace-level data segregation. Your patents, disclosures, documents, and analytics are isolated from every other customer. No user in one workspace can access data belonging to another workspace, regardless of role or permission level.
How does AI use my data?
ArcPrime's AI features analyze your patents, disclosures, and documents only within your workspace and only to generate results for your team. Your data is never used to train AI models. Your data is never shared with other customers or third parties. AI-generated outputs such as prior art results, office action recommendations, and risk scores are stored within your workspace and follow the same encryption and access controls as all other data.
Can ArcPrime employees see my data?
ArcPrime staff access to customer data is restricted to authorized support and engineering personnel, and only when necessary to resolve a support request or maintain the platform. All access is logged and auditable. You can request an access log from your account manager at any time.
Does ArcPrime meet export control and ITAR requirements?
ArcPrime hosts data in the United States and can accommodate specific data residency requirements. If your organization has export control, ITAR, or other regulatory obligations, contact your account manager to discuss configuration options that meet your compliance needs.
Can I control who on my team accesses sensitive data?
Yes. ArcPrime provides role-based access controls that let administrators define exactly who can view, edit, or manage patents, disclosures, and settings. You can restrict access by feature area, patent family, or workflow stage. See how to configure roles and permissions for details.
How do I report a security concern?
Contact [email protected]. ArcPrime investigates all reported concerns promptly and will keep you informed of the outcome.
Still Have Questions?
Contact our support team at [email protected] or use the chat widget in the bottom-right corner of any ArcPrime page.
Related Articles
Roles and Permissions Overview β Configure who can access features and data in your workspace
Getting Started with ArcPrime β Set up your workspace, invite your team, and configure initial settings
AI Features FAQ β Learn what ArcPrime's AI does, how it handles data, and what to expect from AI outputs