Security is a feature, not an upsell

Access control, audit logging and encryption are part of the core platform on every plan, not a gate for enterprise contracts.

Controls

How we protect your workspace

TLS 1.2+ in transit and AES-256 at rest for databases and file storage. Integration credentials and your LLM key are encrypted at the field level.

Workspace-scoped RBAC with custom roles, resource-level grants for per-campaign or per-mailbox access, and optional MFA.

Hardened hosting, network segmentation, automated encrypted backups and least-privilege internal access.

Every mutating action is written to a filterable activity log, so you can see who did what and when.

The agent runs on your LLM key and is bounded by the API-key scopes you grant. Every action is logged and reversible.

Continuous dependency scanning, rapid patching and periodic third-party testing.

Compliance

Data processing agreements, access and deletion workflows, and Standard Contractual Clauses for cross-border transfers.

Consumer access and deletion rights, no sale of personal data, and clear disclosure of automated processing such as fit scoring.

Formal certifications are pursued as we scale; current attestations and our DPA are available to customers under evaluation on request.

Found something? Email [email protected]. We acknowledge reports within 48 hours and will not pursue good-faith researchers.