Security

How we protect your documents and data

GDPR
Compliant
AES-256
Encryption
TLS 1.3
In Transit

Data Protection

  • Encryption at rest

    All documents encrypted with AES-256 in Google Cloud Storage

  • Encryption in transit

    TLS 1.3 for all data transmission

  • Signed URLs

    Time-limited access tokens (15-60 min expiry)

AI & Processing

  • Zero Data Retention

    AI providers configured with ZDR - your data is never stored or used for training

  • Ephemeral sandboxes

    Code execution in isolated containers destroyed after each task

  • No model training

    Your documents are never used to train AI models

Your Rights (GDPR)

  • Data export

    Download all your data anytime from Settings

  • Right to deletion

    Delete your account and all data with one click

  • Data portability

    Export in standard formats (JSON, CSV)

Infrastructure

Hosting: Vercel (Edge Network) + Google Cloud Platform

Database: Neon (SOC 2 compliant PostgreSQL)

Authentication: Clerk (SOC 2 compliant)

Payments: Stripe (PCI-DSS Level 1)

Questions about our security practices?

Contact Security Team

See our full Privacy Policy for complete details.