Technical & Security FAQ

Fully cloud-based. No software to install on user devices or company networks. Reps access through a standard web browser. No VPN, no network configuration, no IT involvement required to deploy.

Any modern laptop or desktop. Chrome and Edge recommended. Not optimized for mobile browsers. No plugins or extensions required.

Yes, for HCP Roleplay only. Browser prompts once for permission, scoped to active sessions only. No persistent microphone access.

Enterprise cloud database and authentication infrastructure. Each client organization's data is logically isolated — no cross-tenant access is architecturally possible. Data stored in the United States.

Email address, voice input during sessions (transcribed to text), session scores and feedback. Does not collect: patient data, PHI, CRM records, device identifiers, or information from other applications.

No. All HCP interactions are with AI-generated personas. No real patient data is involved at any point. The platform has no fields that prompt for patient information.

Streamed in real time via an enterprise real-time audio infrastructure provider, transcribed by an enterprise speech-to-text provider. Raw audio is not stored. Text transcripts are retained for scoring and feedback.

Reps see their own history. Org admins access aggregate usage. SpeechPlus staff have infrastructure-level access for support purposes, controlled and logged. Data is never sold or shared with third parties.

Processed into an isolated, org-specific namespace. Not shared with other clients. Not used to train shared AI models. Deleted on request upon contract termination.

No. An enterprise AI language model is used for conversation and scoring. Customer data generates session responses but does not fine-tune or retrain any shared model.

SpeechPlus does not process PHI and is not subject to HIPAA requirements as a covered entity. BAAs are available at the enterprise tier upon request.

Each org gets an isolated portal at a dedicated subdomain. Access is invite-only — reps cannot self-register. Sessions protected by secure tokens with automatic expiry.

Org admins can request deactivation at any time. Access is revoked immediately. Historical data retained for org records unless deletion is requested.

Built on managed cloud infrastructure with high-availability platforms. Formal uptime SLAs available in enterprise tier contracts.

Yes. SpeechPlus integrates with established enterprise cloud and AI service providers for functions including speech recognition, voice synthesis, language model inference, real-time audio transport, data storage, and authentication. All providers are vetted for security and reliability. A complete subprocessor list is available to enterprise customers upon request.

Email support throughout the pilot window. Dedicated support with defined response times available at enterprise tier.