// Trust & Security Report

    Trint Limited logo

    Trint Limited

    Trint AI transcription platform (transcription, live transcription, AI translation/summarization, collaboration, API/integrations)

    Certifications held

    4

    Maturity

    Growth

    Trains on your data

    No

    Trust center

    Yes

    // Certification ledger

    Each held certification is backed by a verbatim quote from the vendor's own trust or security page. “Not confirmed” means we could not verify it publicly, not that the vendor lacks it.

    ISO 27001
    HELD

    We are ISO 27001 and Cyber Essentials certified, while all data within Trint is encrypted in transit and at rest.

    Verify on trint.com
    Cyber Essentials
    HELD

    We are ISO 27001 and Cyber Essentials certified, while all data within Trint is encrypted in transit and at rest.

    Verify on trint.com
    SOC 2
    HELD

    Not claimed anywhere on Trint's security page, support hub, or privacy/terms documents. No SOC 2 report or attestation found on the vendor's own domain.

    Verify on trint.com
    PCI-DSS (payments, via processor)
    HELD

    Transactions are processed through a PCI-DSS-certified third-party payment processor, Stripe, which uses high-level encryption to protect all payment details entered.

    Verify on trint.com

    // Privacy & AI training

    Trains on customer data

    No

    Data processing agreement

    Offered

    Data region

    Customer choice of EU or US. Data hosted in AWS data centers in both EU and US. Default retention is for the lifetime of the subscription; secure deletion available at contract termination or once per month on request.

    Trint explicitly states it does not train its models on customer content. Security page: 'unlike other AI transcription solutions, we never listen to your recordings to train our algorithms. In short, no one sees your data but you.' Homepage: 'We never train our algorithms on your transcripts and won't add a chatbot to your meeting either.' A separate Platform Privacy Policy (https://trint.com/docs/platform-privacy-policy) governs the SaaS platform; the website/marketing privacy policy explicitly does not cover platform data. Trint acts as data processor for customer content; the Enterprise Services Agreement covers the DPA terms.

    // Security controls

    Encryption in transit

    HTTPS using TLS 1.2 for upload, export and transfer

    trint.com

    Encryption at rest

    AES 256

    trint.com

    Penetration testing

    Yes - 'database back ups and penetration testing' cited as part of continuity/recovery plan

    trint.com

    Bug bounty program

    None found (no HackerOne or Bugcrowd program disclosed on vendor domain)

    trint.com

    Employee access controls / MFA

    MFA enforced for all employees; 'Trint employees never look at user data without your permission'

    trint.com

    Hosting

    Amazon Web Services (AWS), EU and US regions; serverless / infrastructure-as-code

    trint.com

    Access control / SSO

    SAML SSO and SCIM integration available (granular user permissions)

    info.trint.com

    GDPR posture

    States 'Trint is fully GDPR compliant'; UK-based controller with appointed EU representative (IT Governance Europe Ltd)

    trint.com

    // Products & data scope

    Trint Platform (SaaS transcription & content editor)AI transcription / translation / summarization

    data: Customer-uploaded audio/video transcripts; processed as data processor; EU or US residency on AWS; not used to train models

    Core product. 40+ language transcription, 70+ language translation, AI assistant for summaries/quotes. Governed by Platform Privacy Policy.

    Trint LiveReal-time live transcription

    data: Live audio/screen capture transcribed and shared in real time with team

    Same security posture as core platform.

    Mobile & Desktop appsClient applications

    data: Capture and edit transcripts; sync to platform account

    Documented in support hub (Trint apps section).

    Enterprise / BusinessTeam & enterprise edition

    data: Adds SAML SSO, SCIM provisioning, DPA via Enterprise Services Agreement, EU/US data residency selection

    Sold via 'Speak to sales'; used by newsrooms (POLITICO, AFP, SF Chronicle), sports, law firms, education.

    // What to watch

    • No SOC 2 attestation claimed (normal for a UK-based ISO 27001-certified vendor; not a negative, but enterprise buyers may request it)
    • No public bug bounty program (HackerOne/Bugcrowd) found
    • Default data retention is for the lifetime of the subscription; deletion is on-request (monthly) rather than automatic - worth noting for sensitive/legal use cases
    • Two separate privacy policies: website/marketing vs Platform Privacy Policy - directory should link the Platform Privacy Policy for product data questions

    // At a glance

    Pricing model

    Subscription SaaS (self-serve tiers plus enterprise 'Speak to sales' for 50+ users); no public free-forever tier confirmed in evidence

    Self-hostable

    No

    // How we verified this

    Every certification marked HELD is confirmed against a verbatim quote on Trint Limited's own trust, security, or privacy pages. We reject certifications claimed only on third-party aggregators, on a cloud host's behalf, or by a similarly named company.

    Last verified 2026-06-27. Compliance changes over time. Always confirm directly with the vendor before relying on any certification for a purchasing or compliance decision.

    trint.com

    > Browse all vendor trust reports