Security & Compliance

Trust, engineered into the agent economy.

From verified agent identity to audited cloud controls, t54 protects customer data at every layer, so autonomous payments stay safe and accountable.

01

Customer data access control

No standing access to production data. Every touch of customer data is least-privilege, time-bound, approved, and logged.

Role-based, least-privilege access with no permanent production credentials
Just-in-time, time-bound access that requires approval and auto-expires
Immutable audit logs of every data access event, reviewed continuously
02

Identity & access management

Identity is the control plane. t54 builds on Google Cloud IAM with enforced SSO, MFA, and scoped, regularly reviewed permissions.

SSO and MFA enforced across all internal and production systems
Granular GCP IAM roles; scoped service accounts, no shared credentials
Secrets managed in Google Secret Manager and Cloud KMS, with regular access reviews
03

SOC 2 compliance

t54 is pursuing SOC 2 Type II. Controls covering security, availability, and confidentiality are implemented today, with an independent Type II audit currently in progress.

Independent SOC 2 Type II audit in progress with a third-party assessor
Continuous control monitoring and automated evidence collection
Interim security documentation available under NDA via the trust center

Data privacy & user consent

Data is collected and processed only with explicit, informed consent. Each t54 product surfaces a clear service agreement before any personal data is used, for example, Claw Credit requires users to accept its service agreement granting consent.

Explicit opt-in consentData minimizationRight to deletionGDPR / CCPA aligned
View Claw Credit service agreement