Data Privacy & Security
Security Centre

Echo is a cloud-based platform built on a secure, fully managed infrastructure. Although we’re a small, fast-growing startup, we prioritise data protection and follow industry best practices appropriate to our current scale.
Security Governance
Echo follows an informal but deliberate process to identify and mitigate risks. One of our co-founders oversees all information security, ensuring Echo remains up to date.
Regular internal reviews of data handling and employee access.
Security awareness training for all team members including phishing prevention.
Working toward formal frameworks like NIST or ISO 27001 as we scale.
GDPR Compliance
Echo is GDPR-compliant for all users. Based in Europe, we take security very seriously and your privacy is important to us.
Data is stored in secure AWS S3 buckets located in the EU.
We periodically review and anonymise data that is no longer necessary.
We provide full support for Data Subject Access Requests (DSARs).
Data Center and Network Security
Echo runs on Amazon Web Services (AWS), which is ISO 27001 and SOC 2 Type II certified.
Our network is protected by Cloudflare’s enterprise-grade firewall, providing DDoS Mitigation and Web Application Firewall (WAF) protection.
Infrastructure patches and security updates are managed continuously via our cloud provider stack.
Application Security
We conduct penetration testing annually at a minimum, following the OWASP WSTG.
Our development process includes peer code reviews and dependency scanning.
We use continuous monitoring technologies to identify vulnerabilities in the OWASP Top 10.
Data Security
All connections to Echo are encrypted using TLS 1.2+.
Data at rest is encrypted using industry-standard AES-256 algorithms.
Payments: Echo does not store credit card details. All transactions are securely handled by Stripe (PCI-DSS compliant).
Access: We enforce strict Multi-Factor Authentication (MFA) for all administrative access.
Questions?
For any further questions or clarifications, please contact us at: support@meetecho.io


Frequently Asked Questions
Where is my meeting data stored?
All data is stored in secure Amazon Web Services (AWS) S3 buckets located in the EU. AWS is ISO 27001 and SOC 2 Type II certified.
Is Echo GDPR compliant?
How is my data encrypted?
Does Echo use my private meetings to train public AI models?
How do you handle my payment information?
Still have questions? Get in touch







