granola-security-basics
Compare original and translation side by side
🇺🇸
Original
English🇨🇳
Translation
ChineseGranola Security Basics
Granola安全基础
Overview
概述
Implement security best practices for protecting meeting data in Granola.
实施安全最佳实践以保护Granola中的会议数据。
Data Flow & Security
数据流转与安全
How Granola Handles Data
Granola的数据处理流程
Audio Capture (Local Device)
↓
Encrypted Transmission (TLS 1.3)
↓
Processing Server (Transient)
↓
Encrypted Storage (AES-256)
↓
Access via App (Auth Required)音频采集(本地设备)
↓
加密传输(TLS 1.3)
↓
处理服务器(临时存储)
↓
加密存储(AES-256)
↓
通过应用访问(需身份验证)Key Security Features
核心安全特性
| Feature | Status | Details |
|---|---|---|
| Encryption at rest | Yes | AES-256 |
| Encryption in transit | Yes | TLS 1.3 |
| SOC 2 Type II | Yes | Certified |
| GDPR compliant | Yes | EU data options |
| Audio retention | Configurable | Delete after processing |
| 特性 | 状态 | 详情 |
|---|---|---|
| 静态数据加密 | 已支持 | AES-256 |
| 传输中数据加密 | 已支持 | TLS 1.3 |
| SOC 2 Type II | 已获得 | 已认证 |
| GDPR合规 | 已支持 | 提供欧盟数据相关选项 |
| 音频留存 | 可配置 | 处理完成后删除 |
Access Control Best Practices
访问控制最佳实践
Personal Account Security
个人账户安全
markdown
undefinedmarkdown
undefinedChecklist
检查清单
- Use strong unique password
- Enable 2FA (two-factor authentication)
- Review connected apps regularly
- Log out from shared devices
- Use SSO if available (Business/Enterprise)
undefined- 使用高强度唯一密码
- 启用双因素认证(2FA)
- 定期审查已关联的应用
- 在共享设备上登出账号
- 若可用则使用SSO(企业/商业版)
undefinedSharing Permissions
共享权限
| Share Level | Access | Use Case |
|---|---|---|
| Private | Owner only | Sensitive meetings |
| Team | Workspace members | Internal meetings |
| Link (View) | Anyone with link | Read-only sharing |
| Link (Edit) | Anyone with link | Collaborative notes |
| 共享级别 | 访问权限 | 使用场景 |
|---|---|---|
| 私有 | 仅所有者可访问 | 敏感会议 |
| 团队 | 工作区成员可访问 | 内部会议 |
| 链接(查看) | 任何拥有链接的用户可访问 | 只读共享 |
| 链接(编辑) | 任何拥有链接的用户可访问 | 协作式笔记 |
Configure Sharing Defaults
配置共享默认设置
Settings > Privacy > Default Sharing
- New meetings: Private (recommended)
- Auto-share with attendees: Off (for sensitive meetings)
- External sharing: Disabled (for compliance)设置 > 隐私 > 默认共享设置
- 新会议:私有(推荐)
- 自动与参会者共享:关闭(适用于敏感会议)
- 外部共享:禁用(为合规考虑)Sensitive Meeting Handling
敏感会议处理
Pre-Meeting
会前准备
markdown
undefinedmarkdown
undefinedSensitive Meeting Checklist
敏感会议检查清单
- Disable auto-recording
- Confirm attendee list
- Review sharing settings
- Check for screen share visibility
- Consider using "Off the Record" mode
undefined- 禁用自动录制
- 确认参会者名单
- 审查共享设置
- 检查屏幕共享可见性
- 考虑使用“不记录”模式
undefinedDuring Meeting
会议进行中
- Announce recording to all participants
- Pause recording for sensitive discussions
- Avoid displaying sensitive documents on screen
- 向所有参会者告知录制情况
- 敏感讨论时暂停录制
- 避免在屏幕上展示敏感文档
Post-Meeting
会后处理
- Review notes before sharing
- Redact sensitive information
- Use private sharing link
- Set expiration on shared links
- 共享前审查笔记内容
- 编辑(隐去)敏感信息
- 使用私有共享链接
- 为共享链接设置有效期
Data Retention & Deletion
数据留存与删除
Retention Settings
留存设置
Settings > Privacy > Data Retention
Options:
- Keep forever (default)
- Delete audio after 30 days
- Delete audio after 7 days
- Delete audio immediately after processing
Recommendation: Delete audio after processing
(Notes are retained, raw audio is deleted)设置 > 隐私 > 数据留存
选项:
- 永久留存(默认)
- 30天后删除音频
- 7天后删除音频
- 处理完成后立即删除音频
推荐:处理完成后删除音频
(笔记会留存,原始音频将被删除)Manual Deletion
手动删除
markdown
undefinedmarkdown
undefinedDelete Meeting Data
删除会议数据
- Open meeting in Granola
- Click ... menu > Delete
- Confirm deletion
- Note: Deletion is permanent
- 在Granola中打开会议
- 点击...菜单 > 删除
- 确认删除操作
- 注意:删除操作不可恢复
Bulk Deletion
批量删除
- Settings > Data
- Export data (backup)
- Select date range
- Click "Delete meetings in range"
undefined- 设置 > 数据
- 导出数据(备份)
- 选择日期范围
- 点击“删除该范围内的会议”
undefinedExport & Portability
导出与可移植性
markdown
undefinedmarkdown
undefinedData Export Options
数据导出选项
Formats:
- Markdown (.md)
- Word (.docx)
- JSON (full data)
Export includes:
- Meeting notes
- Transcripts
- Action items
- Metadata
Does NOT include:
- Raw audio files
- AI model data
undefined格式:
- Markdown (.md)
- Word (.docx)
- JSON(完整数据)
导出内容包含:
- 会议笔记
- 转录文本
- 行动项
- 元数据
不包含:
- 原始音频文件
- AI模型数据
undefinedCompliance Considerations
合规注意事项
GDPR (EU Users)
GDPR(欧盟用户)
| Requirement | Granola Support |
|---|---|
| Right to access | Data export available |
| Right to delete | Full deletion option |
| Data portability | JSON export |
| Consent | Recording notifications |
| DPA available | Yes (Business plans) |
| 要求 | Granola支持情况 |
|---|---|
| 访问权 | 支持数据导出 |
| 删除权 | 支持完整删除 |
| 数据可移植性 | 支持JSON导出 |
| 同意机制 | 提供录制通知 |
| 可签署数据处理协议(DPA) | 是(商业版) |
HIPAA (Healthcare)
HIPAA(医疗保健领域)
- Standard plans: Not HIPAA compliant
- Enterprise: BAA available on request
- Recommendation: Use only for non-PHI meetings
- 标准版:不兼容HIPAA
- 企业版:可按需签署业务关联协议(BAA)
- 建议:仅用于非受保护健康信息(non-PHI)的会议
SOC 2 Type II
SOC 2 Type II
- Granola is SOC 2 Type II certified
- Audit reports available for Enterprise customers
- Covers security, availability, confidentiality
- Granola已获得SOC 2 Type II认证
- 审计报告对企业客户开放
- 涵盖安全、可用性、保密性
Team Security (Business Plans)
团队安全(商业版)
Admin Controls
管理员控制
markdown
undefinedmarkdown
undefinedAvailable Controls
可用控制项
- Enforce SSO login
- Set password policies
- Manage user permissions
- View audit logs
- Control external sharing
- Enforce 2FA
- IP allowlisting
undefined- 强制启用SSO登录
- 设置密码策略
- 管理用户权限
- 查看审计日志
- 控制外部共享
- 强制启用2FA
- IP白名单
undefinedAudit Logging
审计日志
Available Events:
- User login/logout
- Meeting recorded
- Notes shared
- Data exported
- Settings changed
- User added/removed可记录的事件:
- 用户登录/登出
- 会议已录制
- 笔记已共享
- 数据已导出
- 设置已更改
- 用户添加/移除Security Incident Response
安全事件响应
If Account Compromised
若账号被盗用
- Immediately change password
- Revoke all sessions (Settings > Security > Sign out everywhere)
- Review recent activity
- Check shared notes
- Enable 2FA if not already
- Contact support if data exposed
- 立即修改密码
- 撤销所有会话(设置 > 安全 > 登出所有设备)
- 审查近期活动
- 检查已共享的笔记
- 若未启用则开启2FA
- 若数据泄露则联系支持团队
Reporting Security Issues
报告安全问题
- Email: security@granola.ai
- Include: Detailed description, steps to reproduce
- Response: Within 24 hours
- 邮箱:security@granola.ai
- 需包含:详细描述、复现步骤
- 响应时间:24小时内
Resources
相关资源
Next Steps
下一步操作
Proceed to for production deployment preparation.
granola-prod-checklist请前往进行生产部署准备。
granola-prod-checklist