Security & compliance

How we handle data, and how we tell you when we get it wrong.

Data handling

We store the minimum needed to deliver a brief. Customer prompts and traces stay in their tenancy by default; we receive only redacted summaries unless explicitly opted in.

Encryption

TLS 1.3 in transit. AES-256 at rest. Customer-managed keys for engagement tenancies.

Incident response

A 24-hour SLA for first contact, 72-hour public disclosure for vulnerabilities affecting users. Post-mortems are public, redacted only where customer confidentiality requires.

Sub-processors

A short list, audited annually. Names and purposes published on this page.

Retention

Engagement artefacts deleted 90 days after wrap-up unless the customer asks otherwise in writing.