Security Portal
We secure the decisions of autonomous agents. Our own security posture must be flawless. Account security includes MFA, one-time backup codes, and trusted devices. Below is a transparent breakdown of our technical controls, data practices, and roadmap.
EU Data Residency
All data processing and storage happens exclusively on servers located in Frankfurt, Germany. We never route customer data outside the EU. We are fully GDPR compliant and act strictly as a data processor under Art. 28.
Read the DPA→Encrypted in Transit & at Rest
All trace payloads are encrypted at rest using AES-256 and in transit via TLS 1.3. Audit log entries are cryptographically hashed to guarantee immutability — a tampered log is a detectable log.
View Compliance & Encryption→Vulnerability Disclosure
We operate a responsible disclosure program. If you have discovered a security vulnerability, please report it to our security team. We commit to acknowledging all reports within 48 hours.
[email protected]→SOC 2 Type II
We are committed to completing a SOC 2 Type II audit. This formal certification is on our security roadmap and will be completed as we scale our enterprise customer base. Enterprise customers can request a pre-audit security questionnaire (VSA) today.
Request Security Questionnaire→