A Message from Tandm.io’s CEO/Founder

I just heard back from our auditors, and it’s official. We have formally passed our SOC 2 and ISO 27001 audits! 

The reports are currently being finalized as we speak. Kudos to everyone on the team for reaching this massive compliance milestone.

Special thanks to our partners and customers for trusting we’d get this done.

When we first started building Tandm, we knew that serving frontline operations wasn’t just about providing an innovative tool, it was about honoring the immense trust placed in us. 

Frontline work happens in real-time, often in high-stakes environments like industrial facilities, logistics hubs, and mining operations. 

The voice data passing through our platform, integrating directly with your radios and intercoms, represents your daily operations, your proprietary workflows, and your team's communication.

We’ve always prioritized data protection because quite simply, it’s the right thing to do. 

Trust is at the absolute core of what we do. 

Reassuring our customers of our ability and commitment to keep their operational information private, safe, and secure is our highest priority. 

We went through these rigorous measures to formalize our ethical security principles. 

It’s our absolute privilege to serve your frontline teams, and we will continue to fiercely protect that privilege.

Warmly,

Nikhil Riley

Your Frontline Security Questions, Answered

At Tandm, we believe that world-class security shouldn’t feel like a black box.

We want to explain our technical frameworks in a simple, straightforward way so you can have complete peace of mind when deploying our voice-first platform.

To help our prospective buyers, enterprise IT managers, and security officers evaluate our environment, we’ve answered your core compliance questions.

Does Tandm.io have SOC 2?

Yes, Tandm.io has successfully passed its Service Organization Control 2 (SOC 2) audit. 

This internationally recognized standard, developed and maintained by the American Institute of CPAs (AICPA), verifies that our cloud-based infrastructure and internal procedures are designed to protect customer data.

Passing this audit means that an independent, third-party firm evaluated our internal controls and confirmed that we meet strict industry benchmarks across security, availability, confidentiality, and processing integrity.

What does SOC 2 compliance mean for Tandm.io buyers?

For our buyers, SOC 2 compliance means absolute peace of mind. It serves as structural proof that Tandm doesn't just promise security. 

We have the verifiable protocols, safeguards, and technical frameworks active under the hood to back it up.

When your frontline team speaks into a radio or intercom integrated with Tandm, you know that the data transmission is encrypted, access is heavily restricted to authorized personnel, and our operational systems are resilient against external threats. 

From a daily usability standpoint, this milestone changes nothing about how your crew uses Tandm; it simply means your compliance and IT teams can clear us for deployment with confidence.

Is Tandm.io ISO 27001 certified?

Yes, Tandm.io has achieved ISO/IEC 27001 approval. 

While SOC 2 focuses primarily on operational controls within North America, ISO 27001 is the premier gold standard for information security management systems (ISMS) globally.

This certification means our entire corporate ecosystem—including our data processing workflows, risk management frameworks, physical security, and employee training—aligns with strict international standards. 

It proves that Tandm manages data security through a continuous, highly formalized loop of assessment and optimization.

Why did Tandm.io pursue both SOC 2 and ISO 27001 approvals?

We pursued both frameworks because our industrial and enterprise clients operate globally and require watertight assurance. 

Frontline environments integrate multiple legacy hardware systems like two-way radios and facility intercoms with our modern, voice-first AI platform. 

This requires an exceptionally robust security posture.

By achieving both SOC 2 and ISO 27001 approvals simultaneously, we remove the friction of prolonged vendor assessments for your IT department. 

Whether your corporate compliance framework is built around North American AICPA principles or international ISO standards, Tandm natively aligns with your security expectations out of the box.

How does Tandm.io protect frontline voice data and integration streams?

We protect frontline voice data through a strict "Security-by-Design" architecture. 

All data flowing between your local communication networks (radios/intercoms) and the Tandm platform is fully encrypted both in transit (using advanced SSL/TLS protocols) and at rest (utilizing AES-256 encryption with managed keys).

We also enforce rigorous internal access controls. Employee system access is unique, authenticated, and restricted via the principle of least privilege. 

This means nobody at Tandm can look at or interact with your operational data unless it’s strictly required to maintain your system's performance, and even then, every action is fully logged and auditable.

Does Tandm.io use customer voice recordings to train public AI models?

No, Tandm.io does not use your operational voice data, transcripts, or corporate conversations to train public or third-party artificial intelligence models. 

Your data belongs entirely to you.

We maintain a strict data privacy boundary. Any AI-driven analysis, transcription, or frontline automation performed by Tandm happens within secure, dedicated environments. 

Your competitive advantages, internal logistics, and operational conversations remain strictly confidential to your organization.

How can a prospective buyer request Tandm.io's compliance reports?

We make it incredibly easy for your security teams to review our documentation. 

Once our final, polished compliance reports are delivered by our auditors in the coming days, they will be accessible directly through our dedicated Trust Center.

If you are a prospective enterprise buyer or an existing customer undergoing an annual vendor security review, you can request a copy of our full SOC 2 report and ISO 27001 certification details by reaching out to our security compliance team. 

We’re more than happy to share these documents under a standard Non-Disclosure Agreement (NDA).