Private deployment, per-account isolation, full audit trails. Built to pass your toughest vendor review.
We will not use your engineering data to train models for other customers. If you leave, you take everything. Full data portability, no lock-in.
Per-account database isolation (dedicated PostgreSQL). Full export in Excel, CSV, JSON, or XML at any time. Documented data-exit path. Complete deletion on contract termination, including backups.
Your data goes from your VPC to your cloud provider’s AI service. It never touches our servers. Choose your model provider. Zero retention on inference.
Models run via AWS Bedrock or Azure OpenAI inside your cloud tenant. Multi-provider support (OpenAI, Anthropic, Google). No customer data used to train third-party models. Air-gapped mode available for classified environments.
Runs entirely inside your perimeter. Your security team controls the environment. Meets pharma, defense, and energy deployment requirements.
VPC deployment on AWS, Azure, or GCP. On-premise installation on your hardware. Cloud-hosted option with strict per-account isolation. US or EU data residency. 34 languages supported.
Every FMEA row requires explicit confirmation. Every edit is versioned. Every access is logged. When an auditor asks, you have the answer.
25+ event types logged: authentication, authorization, data access, configuration changes, exports, bulk operations. 90-day minimum retention. AI reasoning exported with step-by-step logic, confidence scores, and source attribution. Security event detection for injection, XSS, and path traversal attempts.
Your team authenticates through your existing identity provider. Fine-grained permissions. No separate credentials to manage.
SSO via Google, Microsoft, Azure AD, GitHub (OAuth 2.0). Multi-factor authentication enforced at the org level. Role-based access control with 14 permission scopes and 8 action types. Brute-force protection, rate limiting, automatic lockout. JWT sessions with configurable expiry.
Data encrypted at rest and in transit. No plaintext storage of sensitive data. All communications secured.
PostgreSQL encryption at rest. TLS/HTTPS for all API communications. bcrypt password hashing. Password history enforcement. Secure token-based reset flows. Constant-time comparison to prevent timing attacks.
Controls aligned to SOC 2 Type II across all five trust service principles. GDPR compliant. Enterprise-grade liability coverage. Unlimited users, no data caps.
SOC 2 Type II controls implemented across security, availability, processing integrity, confidentiality, and privacy. GDPR data processing with deletion on request and EU/US residency options. 99.9% uptime SLA. Dedicated customer success manager. Direct access to the founding team.
Custom deployment configurations, dedicated infrastructure, additional compliance requirements – we’ll work with your security team to make it happen.