Yellow AI Trust Center
Welcome to Yellow.ai's Trust Center. Our commitment to data privacy and security is embedded in every part of our business. Use this Trust Center to learn about our security posture and request access to our security documentation.
Our compliance program is independently audited against multiple international standards. We are certified with ISO/IEC 27001:2022, ISO/IEC 27701:2019, and SOC 2 Type II attested. We comply with applicable data protection laws as both "Processor" & "Controllers". Our audit reports and certificates are accessible upon request after signing an NDA.
To demonstrate our proactive stance on threat detection, we operate a dedicated Vulnerability Disclosure Program (VDP). We actively collaborate with the global security community to identify, report, and rapidly resolve potential vulnerabilities, ensuring our system remains hardened against evolving threats.
Logitech
Decathlon
Ferrellgas
Bajaj Auto Ltd
LuLu Group International
Manipal Hospitals
ICICI Lombard GIC
Haldirams
Leadspace
Burger King
DAZN
Lion Air
iFly Airlines
VIPdesk Connect
Lenovo
Cherry TechnologiesDocuments
Security Grades
Security Grades
We are constantly monitoring the security of our website. We will post our grades from public security rating agencies when they become available.
Asset Management
Asset Management
We have strict asset management policies in place to ensure that all assets are accounted for and secure.
Change Management
Change Management
We have a change and configuration management process in place to ensure that changes are properly reviewed and approved.
Subprocessors
Subprocessors
Yellow.ai Attains PCI DSS Compliance as a Service Provider
Yellow.ai has officially renewed its PCI DSS Service Provider compliance. This certification confirms that our platform’s infrastructure meets the stringent global standards required for secure financial data processing. Our latest Attestation of Compliance (AOC) & Certificate of Compliance (COC) is now available for download under the "Documents" section of this portal for all verified partners.
Latest SOC 2 Type II Report for Yellow.ai is Now Available!
We are pleased to announce that Yellow.ai’s most recent SOC 2 Type II Report, covering the period of December 01, 2024, to November 30, 2025, is now available for review through our SafeBase Trust Center.
This latest audit confirms that our internal controls meet the rigorous Trust Services Criteria for:
- Security
- Availability
- Confidentiality
Accessing the Report: Customers and partners with authorized access can download the full report directly from the "Documents" section of this portal.