.png)
Compliance
Bluprint is built to meet the expectations of teams that take data protection seriously. Here's where it stands.
SOC 2
Bluprint's security controls are aligned with the SOC 2 Trust Services Criteria — including access control, audit logging, change management, and incident response. In practice that means the safeguards described across this section (RBAC, encryption, isolation, and the audit trail) map to the controls SOC 2 is concerned with.
Aligned with — what that means
"Aligned with SOC 2" means our controls are designed and operated against the SOC 2 criteria. For the current status of formal reports or attestations, or to discuss your security review, contact compliance@alesko.ai.
GDPR
Bluprint processes personal data in accordance with the General Data Protection Regulation (GDPR). Your rights are honoured, including:
- Access — know what data is held about you
- Rectification — correct inaccurate data
- Erasure — request deletion of your data
- Portability — obtain your data in a usable form
Data-minimisation is built into the product, not bolted on: audit records anonymise IP addresses, and transient data (like read notifications and presence) expires automatically rather than accumulating.
Australian Privacy Act
As an Australian company, Bluprint complies with the Privacy Act 1988 and the Australian Privacy Principles (APPs) in how personal information is collected, used, and disclosed.
A trail you can prove
Compliance frameworks expect you to be able to show what happened. Bluprint's audit trail is tamper-evident — each entry is cryptographically chained to the last, so the record can't be quietly altered — and it distinguishes human from AI actions.
Compliance questions
For data processing agreements, security reviews, or compliance documentation, reach the team at compliance@alesko.ai.
Next
Last updated: 2026-05-31