Hello! We’re team Granola. If you’re wondering about whether Granola is okay for your team to adopt, or have a particular question about security or compliance, hopefully this page can help. If not, email us [email protected]. We’re a friendly bunch.

<aside> 🍳

Coming soon: Granola Enterprise plan

We’re working on offering an enterprise plan suited to larger companies. We’re still figuring out the details of what this would include, but expect things like:

• Admin controls for provisioning/de-provisioning users
• Ability to opt-out of AI model improvement
• Advanced control over sharing and access
• Custom data retention policies </aside>

First, some background…

Granola is a small but experienced team, well-funded with over $24 million raised from top-tier VC funds. Our team members have backgrounds in companies like Apple, Google, Meta, and Amazon. We're early in our journey, having launched publicly in May 2024 after a year-long private beta program.

We're building a tool for professional use, targeting senior, time-poor individuals. These users often deal with highly sensitive and impactful information, so security, privacy, and trustworthiness are paramount to our success as a company.

So far, most of our work has focused on making Granola great for individuals and small teams. However, we're increasingly shifting our focus to making Granola enterprise-ready to serve larger teams. In the coming months, you can expect to see us improve on many of the factors outlined below.

With that, lets get into the specifics:

Compliance Certifications

We are currently working on our SOC-2 certification with Vanta, so expect many of the points below to level up over the next couple months. We do not currently don't have any compliance certifications such as SOC-2, ISO, or HIPAA.

Where is my data stored?

• Granola stores notes and transcripts in industry-standard AWS-hosted virtual private cloud infrastructure, located in US East.
• Our database is encrypted and backed up daily.
• We use third-party providers such as OpenAI, Anthropic, and Deepgram for AI features.
• We use encrypted connections for transmitting your data to our backend and third parties.
• Can we bring our own AI models? Currently not. This is something we may consider as an enterprise feature in future, but currently a lot of the magic of Granola comes in the careful matching of prompts, context, and AI models which we get from retaining controls over this.
• Can I use a version of Granola in a private cloud? We may consider building this in future as an enterprise feature, but not at the moment.

What can Granola employees access?

• As stated in our privacy policy, the Granola team has the ability to access user data for security & debugging purposes.