Your audits are private. Always.

• All data is encrypted in transit (TLS 1.2+) and at rest.
• Audits, recommendations, and AI responses are scoped to your workspace.
• We never share customer data across workspaces.
• We never use your data to train AI models — ours or any provider's.

When we query OpenAI, Gemini, Claude, Perplexity, or Copilot on your behalf, we use enterprise endpoints that disable model training on inputs where available. The prompts we send are standardized buyer-intent queries and do not include your private workspace data unless you explicitly attach it.

• Row-level security on every database table.
• Authenticated sessions only — no anonymous data access.
• Role-based access for workspace members (admin, member, viewer).
• Least-privilege service accounts for background jobs.

We use a small number of vetted infrastructure providers (hosting, database, AI inference). A current list is available on request via security@signalfox.ai.

If you believe you've found a security issue, please email security@signalfox.ai. We respond within one business day and credit reporters who request it.

This page is reviewed quarterly. Material changes are announced in-app and dated in the changelog.