Trust center

Security, compliance and uptime, in one place.

Where your data lives, how it's encrypted, who can access it, what the AI is allowed to read, and the audit trail behind every operation. No marketing fog, just the questions your security team will ask, with real answers.

GDPR & CCPA todayAES-256 · TLS 1.3EU residency defaultNo training on your data
100% of AI turns logged
99.95% uptime SLA
Live Security posture AES-256 TLS 1.3 HMAC 2FA AUDIT LOG · IMMUTABLE login · owner · 196.x.x.x ai.reply · ticket #482 webhook · order.paid · 200 role.update · support export · audit.csv crm.contact.create consent.update · EU key.rotate · connector login · owner · 196.x.x.x ai.reply · ticket #482 webhook · order.paid · 200 role.update · support
Security by default

Encryption, signing and audit on every layer.

99.95%cloud uptime SLA
AES-256at rest · TLS 1.3 in transit
HMACSHA-256 on every API call
100%of AI turns logged
Security at every layer

How we protect your data and your customers'.

AI safetyEvery AI action is a registered contract with role gates and confirmation policies. Risky operations need explicit human approval; the AI cannot invent operations.
Audit trailEvery admin action, AI turn and webhook delivery: actor, timestamp, IP and duration. Owner-only, complete, exportable to CSV.
Operational hardeningIP & CIDR firewall, bot and threat scoring on visitor logs, rate limiting on public endpoints, replay-protected gateway events.
A receipt for everything

A defended core, and a record you can hand an auditor.

Encryption seals the data; an immutable stream records every move. Two deep, live capabilities, not a checkbox.

Encryption & key handling

AES-256 at rest. TLS 1.3 in transit. Keys sealed.

Every byte you store is encrypted with AES-256 using per-tenant keys on cloud. Every byte we send across the wire uses TLS 1.3. Public API keys are stored in plaintext because they're meant to be shared, but secret keys and webhook signing secrets are sealed with envelope encryption derived from your environment, never logged in plaintext anywhere.

AES-256 at rest with per-tenant key separation on cloud.
TLS 1.3 in transit on every connection.
Sealed secrets. Webhook signing keys never logged in plaintext.
Live Encryption pipeline PLAINTEXT card · 4242… webhook_secret AES-256 SEALED VAULT TLS 1.3every connection encrypted Per-tenant keysisolated, rotatable CIPHERTEXT AT REST a3f9·c14e·77b2·e0d8·…
Audit & AI transparency

An immutable record of every operation, and every AI turn.

Every admin action, every AI turn and every webhook delivery lands in an immutable, owner-only audit stream with the actor, timestamp, IP and duration. AI History records each admin, customer and writing turn with the exact rendered prompt, the AI response, the action result and the duration. Filter, search and export the whole trail to CSV.

100% of AI turns logged: prompt, response, result and actor.
Owner-only & complete: actor, IP, time and duration on every entry.
CSV export. Hand auditors the whole trail; filter by action or actor.
Live IMMUTABLE AUDIT LOG APPEND-ONLY ai.reply · ticket #482AI assistant · owner confirmed · 2.1s · ok customer.erase · #1042admin · owner · 102.89.x · 2:41 PM · ok webhook · order.paid · 200HMAC verified · delivered · ok role.update · supportadmin · owner · new grant · ok export · audit.csvowner · 1,204 rows · ok ai.reply · ticket #482AI assistant · owner confirmed · 2.1s · ok
Where the data lives

Three deployment shapes. You choose.

Shared multi-tenant cloud for the fastest path to production, a dedicated tenant database for stronger isolation, or self-hosted on your own infrastructure where you keep the data path end-to-end. Same code everywhere; you pick the trust boundary.

Cloud · shared: per-tenant keys, isolated databases per workspace, regional residency, daily encrypted backups.
Cloud · dedicated: dedicated tenant DB with isolated credentials, optional VM and custom domain on Business / Enterprise.
Self-hosted: full data sovereignty, your backups and retention, air-gap compatible.
EU & West Africa regionsRegion choice on dedicatedYou pick on self-hosted
Live Data residency CLOUD · SHARED Tenant Aown keys · own DB Tenant Bown keys · own DB Tenant Cown keys · own DB EU · West Africa daily encrypted backup CLOUD · DEDICATED One tenant Isolated credentials Optional dedicated VM Custom domain & SSL Region chosen at provisioning Business / Enterprise SELF-HOSTED Your infrastructure Your backups & retention Air-gap compatible Full data sovereignty license key · same code
Compliance posture · responsible AI

Built for serious compliance reviews, honestly.

Our cloud platform is engineered with the controls security teams expect, and we don't claim certifications we don't hold. GDPR-aligned with DSAR, deletion and export workflows live in the account portal; CCPA-aware with do-not-sell signals respected; SOC 2 and ISO 27001 in progress with audit-ready immutable logs already in place. A BAA is available on Business for HIPAA workloads. And the AI never trains on your data. You choose the provider, the model and, on self-hosted, your own key.

No training on your data. Calls carry the live conversation context only.
You choose the provider: Anthropic, OpenAI or your own; bring your own key on self-hosted.
Action approval gating. Risky operations need explicit human confirmation.
COMPLIANCE POSTURE Ready GDPR · DSAR, delete & export CCPA · do-not-sell respected HIPAA · BAA on Business SOC 2 · audit-ready logsIN PROGRESS ISO 27001 · controls formingIN PROGRESS AI · never trains on your data GDPR / CCPA aligned today · SOC 2 / ISO in progress
100%AI turns audited
0off-contract actions allowed
Yourmodel, keys & data
Neverused to train models
Data handling

Sub-processors, backups and retention.

How data is handled day to day: who touches it, how it's backed up, and how long it's kept.

🧩

Sub-processors

Cloud infrastructure, AI providers, payment gateways and email delivery are listed on /compliance with the data each handles and where it sits. We notify customers before any change.

💾

Backups

Daily encrypted backups on cloud with point-in-time recovery. Self-hosted customers own their own backup schedule and storage end-to-end.

Customer-controlled retention

A master retention setting drives every log purge. Set it to forever or any number of days; deletion and export run from the account portal.

🗑️

Delete & export on request

Every customer record exposes a delete & export button; operators can also call POST /v1/customers/{id}/erase. Deletion audit entries are retained 12 months for compliance.

🍪

Cookie consent

A built-in consent banner with regional defaults and per-cookie opt-in, so consent decisions are captured and recorded in the audit stream.

🐛

Report a vulnerability

Found a security issue? Email [email protected]. We acknowledge disclosures quickly and credit responsible researchers.

Compare

Most platforms ask you to trust them. OpsIQ shows you.

The difference between a marketing promise and a control your security team can verify.

What your security team asksTypical answerOpsIQ
Encryption at rest"It's encrypted"AES-256 with per-tenant keys; secrets sealed, never logged
Encryption in transit"HTTPS"TLS 1.3 on every connection
Webhook authenticityShared token in a headerHMAC-SHA256 over the raw body + replay protection
Who can see what AI didBlack box100% of AI turns logged: prompt, response, result, actor
Audit trailPartial app logsImmutable, owner-only; actor, IP, time, duration; CSV export
Data residencyOne region, take it or leave itEU & West Africa, region choice on dedicated, your call self-hosted
Delete a customer's dataFile a ticket, waitSelf-serve button + POST /v1/customers/{id}/erase
Training on your data"Read our policy"Never: live context only, you choose the provider
Self-hostingNot availableSame code, your infra, full data sovereignty, air-gap ready
Incident transparencyStatus page, eventually30-min notice, public RCA in 5 business days, SLA credits
Full trust & security list

Every control, grouped.

The controls behind the trust center. ★ marks a stand-out.

ControlWhat it does
Encryption & keys
AES-256 at rest ★Envelope encryption with per-tenant key separation on cloud.
TLS 1.3 in transit ★Every connection encrypted in flight.
Sealed secretsSecret keys and webhook signing secrets stored encrypted; never logged in plaintext.
Per-install key derivationEncryption keys derived from your environment.
Access & identity
Role-based access ★Owner, admin, support and custom roles with per-page permission grants.
Two-factor (2FA)On every account.
SSOSingle sign-on available on Business plans.
Failed-login lockoutBrute-force attempts throttled into automatic lockout.
Signed integrations
HMAC-SHA256 webhooks ★Signed over the raw body on every webhook delivery.
Replay protectionTimestamp + nonce on signed events.
Idempotency keysOn all write APIs.
Per-connector secret rotationRotate each integration's secret live.
AI safety
Action contracts ★Every AI action is registered with declared scope, roles and parameters.
Approval gatingRisky operations require explicit human confirmation.
No off-contract actionsThe AI cannot invent operations.
No training on your data ★Calls carry live conversation context only; you choose the provider.
AI HistoryEvery turn: rendered prompt, response, action result, duration and actor.
Audit & transparency
Immutable audit log ★Every admin action, AI turn and webhook delivery: actor, IP, time, duration.
Owner-only accessThe audit trail is restricted to the workspace owner.
CSV exportFilter, search and export the whole trail.
Operational hardening
IP & CIDR firewallBlocklists on inbound traffic.
Bot & threat scoringOn visitor logs.
Rate limitingOn public endpoints.
Replay-protected gateway eventsPayment gateway callbacks verified and de-duplicated.
Compliance & data
GDPR-aligned ★DSAR, deletion and export workflows live in the account portal.
CCPA-awareDo-not-sell signals respected; per-customer erase endpoints.
HIPAA-ready (Business)BAA available for Business customers handling PHI.
SOC 2 IN PROGRESSAudit-ready immutable logs already in place.
ISO 27001 IN PROGRESSControls being formalised.
Cookie consentBuilt-in banner with regional defaults and per-cookie opt-in.
Data residencyEU & West Africa cloud regions; you pick on self-hosted.
Delete & exportSelf-serve plus POST /v1/customers/{id}/erase.
Customer-controlled retentionA master setting drives every log purge.
Daily encrypted backupsPoint-in-time recovery on cloud; your own schedule self-hosted.
Uptime & incidents
99.95% uptime SLA ★For cloud customers.
Live statusPublic live status at /status.
30-minute incident noticeAffected customers notified within 30 minutes of an operational incident.
Public RCAPosted within 5 business days; cloud customers credited per SLA terms.
Deployment isolation
Shared cloud isolation ★Per-tenant keys and isolated databases per workspace.
Dedicated tenantDedicated database with isolated credentials, optional VM and custom domain.
Self-hostedSame code, your infrastructure, full data sovereignty, air-gap compatible.
FAQ

The questions your security team will ask.

Straight answers, no marketing fog.

No. We do not train any model on customer data. AI calls hit Anthropic, OpenAI or your chosen provider with the live conversation context only; providers' standard data handling applies (most don't train on API traffic by default).
Multi-tenant cloud runs in EU and West Africa today. Dedicated cloud customers can choose region at provisioning. Self-hosted customers run wherever they like.
Public API keys are stored in plaintext (they're meant to be shared); secret keys and webhook signing secrets are stored encrypted with AES-256 using a per-install key derived from your environment.
Yes. Every customer record exposes a "delete & export" button in the account portal. Operators can also call POST /v1/customers/{id}/erase programmatically. Audit log entries about the deletion itself are retained for 12 months for compliance review.
Live status at /status. We notify affected customers within 30 minutes for any operational incident, post a public RCA within 5 business days, and credit cloud customers per the SLA terms.
The /compliance page lists every subprocessor (cloud infra, AI providers, payment gateways, email delivery), what data they handle, and where they sit. We notify customers in advance of any change.
Yes. AI History (owner-only) records every admin, customer and writing turn with the exact rendered prompt, the AI response, the action result if any, the duration and the actor. Filter, search and export to CSV.