Your data is our priority. Our no-compromise approach ensures
data protection, security, and privacy by design.
We are dedicated to best practices in information security to meet and exceed industry standards.
Toloka implements an information security management system (ISMS) that was audited by the British Standards Institution (BSI) and certified in compliance with the ISO/IEC 27001 standard. The international standard provides a framework for information risk management to guarantee confidentiality, integrity and availability of data.
The Toloka platform strives to comply with key requirements of the General Data Protection Regulation (GDPR). We prioritize the privacy of our users and make every effort to protect personal data by following established internal processes.
We take security seriously, from designing the architecture of our platform to protecting the rights of our users.
Read our blog post to learn more about our approach to information security.
We use a secure software development lifecycle process that includes:
We reserve the right of our users to remain anonymous and not share their personal information. Customers may choose to upload tasks under their real brand name or use a nickname. Performers’ real names are not shown on the platform when they are completing tasks.
We take full responsibility for the privacy of our users’ data. Our multi-tenant storage architecture is convenient for our customers and complies with local laws.
Customers have 3 options for storing datasets:
For world-class protection, data is hosted in a Microsoft Azure cloud split into multi-tenant tiers by region (US customer data is stored in the US, and EU customer data stays in the EU).
A dedicated and isolated single-tenant cluster of storages is available by request for large customers based on their geography.
The Toloka API allows the customer to host data in their own cloud or on their own premises.
The owner of data hosted on Toloka is always the customer who is requesting labeling services.
Toloka only uses customer data in aggregated or anonymized form for product development, internal training, or marketing efforts that analyze overall usage of the platform.
Toloka is a public crowd platform where customers can have data of any type labeled. The purpose of the platform is to create efficient labeling pipelines for artificial intelligence and machine learning projects and to provide convenient tools for handling data.
Customers sign standard service agreements or individual agreements approved by our Legal department. Performers sign agreements for data labeling services.