— Security

Your work stays your work.

Encryption at rest and in transit, strict tenant isolation for product workspaces, and zero training on customer content. This is the table-stakes summary — the details follow.

SOC 2 posture
Audited annually.
AES-256 / TLS 1.3
At rest and in transit.
SSO / SAML
Okta, Google, Azure.
No model training
Your data is yours.

Infrastructure

We run on a hardened multi-tenant cloud with strict logical separation between workspaces. Production access is gated by hardware security keys, audited, and limited to a small group.

Data handling

All content you share is encrypted at rest with AES-256 and in transit with TLS 1.3. Per-tenant encryption keys are rotated on a defined cadence.

AI training

Customer content is never used to train third-party base models. Internal models that classify or summarise on your content run only within your tenant's processing boundary, unless you explicitly opt in to contribute anonymised samples to product improvement.

Identity & access

Strong passwords + optional 2FA on every plan. Enterprise customers get SSO/SAML, SCIM provisioning and IP allow-listing.

Compliance

SOC 2 Type II posture audited annually; reports under NDA. Data residency in EU and India regions for Enterprise.

Responsible disclosure

Found something? Email security@windikate.com — we acknowledge within one working day.