​

Security & Compliance

• Tenant isolation for providers, routes, keys, logs, usage.
• Data handling: no training on customer content by default; prompt redaction & response filters.
• Encryption: TLS in transit; encrypted storage at rest.
• Access controls: RBAC + admin tokens; optional JWT for end-user identity.
• Audit: admin actions logged; exportable to SIEM.
• Residency: regional storage/processing; strict residency option.