Security & Trust

Data control by design. Private deploy available with full data residency control.

Data Residency & Processing

Your data stays in your cloud. We query object storage in place and minimize data movement. Private deployment is available for full control.

TLS 1.2+ in transit; encryption at rest where applicable. Secrets are scoped and rotated. We enforce modern ciphers and secure defaults.

Workspace isolation, least privilege, and role‑based access for features and data fields. All admin actions are logged for auditability.

We avoid storing direct identifiers by default (e.g., emails, phone numbers). Column‑level masking and tokenization are available where needed.

Data contracts, freshness, and drift checks. Built‑in reconciliation tools (platform vs reference) and replay windows for corrections.

SOC 2 Type II (roadmap). GDPR/CCPA alignment. DPA available upon request. Regular pen‑tests and secure SDLC practices.

Need our DPA or security details?