CSA STAR Registry

Staffinity is an AI workplace agent platform that deploys enterprise-grade AI assistants directly into Microsoft Teams and Slack. As an Orchestrated Service Provider (OSP), Staffinity integrates Anthropic Claude into client environments via a secure orchestration layer, enabling employees to interact with AI agents for HR, operations, finance, and executive support workflows. Staffinity is built for multi-tenant enterprise deployments on AWS ECS Fargate (us-east-2) with strict per-client data isolation — each client operates in a dedicated ECS cluster with client-specific KMS encryption keys, isolated databases, and separate network boundaries. No client data is ever co-mingled. Security controls include AES-256 encryption at rest and TLS 1.3 in transit, Microsoft Entra ID authentication with per-request authorization checks, PII detection and redaction middleware (20+ pattern types including HIPAA identifiers), prompt injection boundary enforcement, per-user rate limiting, and an automatic circuit breaker that escalates to human operators on AI failures. All AI processing uses Anthropic's Enterprise agreement — client data is never used to train shared models. Staffinity holds a GDPR-compliant Data Processing Agreement, a HIPAA-ready architecture with Business Associate Agreement available on request, and is currently in the SOC 2 Type I observation period (target Q3 2026). Staffinity, LLC — Palm Beach, FL | staffinity.io