Security, privacy, and compliance by default

Infrastructure & network security

• Hardened cloud hosting: all core services run in secure, audited data centers with encryption at rest and in transit.
• Network isolation: app, database, and worker services are split across private networks with strict security groups.
• TLS everywhere: all traffic uses HTTPS (TLS 1.2+); HTTP is redirected.

Application security

• Secure coding practices, code review, staged deployments.
• Dependency scanning and regular patching of third-party libs.
• Managed authentication with support for SSO, MFA/2FA, and session management.
• Role-based access controls for Team and Enterprise workspaces.
• Rate limiting at the API and UI layer to mitigate abuse and brute-force attacks.

Data protection & privacy

We treat customer data as confidential and apply GDPR-aligned controls, including:

• Data encryption at rest for databases and backups.
• Encryption in transit for all data flows.
• Logical separation of tenant data and strict least-privilege access internally.
• A signed Data Processing Addendum for Team and Enterprise customers.

See our Privacy Policy and Data Processing Addendum for details.

AI & model providers

AI features such as Basic/Advanced Insights and JoinSense AI run on carefully selected model providers. We:

• Send only the minimal data needed to generate outputs.
• Do not send passwords or payment details to model providers.
• Contractually prohibit the use of your private data to train public models.

Incident response & monitoring

• Centralized logging and alerting on key system events.
• Documented incident response process covering detection, containment, investigation, and communication.
• Breach notification obligations in our DPA: we notify you without undue delay if your personal data is affected.

Compliance documentation

For Enterprise evaluations, we can provide security questionnaires, architecture diagrams, and policy summaries under NDA. Contact us at security@datasetiq.com for more.