thinQit|Security

|

Six pillars of trust

Built for the teams who can't afford mistakes.

01

Data in transit & at rest

Always encrypted

All traffic is TLS 1.3 with perfect forward secrecy. Data at rest is encrypted with AES 256, and customer keys are rotated automatically.

  • TLS 1.3 everywhere
  • AES 256 at rest
  • Automatic key rotation
  • Optional BYOK (bring your own key)
02

Access control

Granular by design

Enterprise SSO via SAML and OIDC, role based access control, and just in time approvals for sensitive actions. No shared credentials, ever.

  • SAML & OIDC SSO
  • Role based access control
  • SCIM user provisioning
  • Just in time approvals
03

Compliance

Built for enterprise

Independently audited against SOC 2 Type II and ISO 27001. GDPR and CCPA aligned by default, with DPAs available on request.

  • SOC 2 Type II
  • ISO 27001
  • GDPR & CCPA ready
  • HIPAA available on Enterprise
04

Audit & observability

Every action, logged

Immutable audit trails for every user and agent action, streamed to your SIEM in real time. Search, export, and retain for as long as you need.

  • Immutable audit logs
  • Real time SIEM streaming
  • Export to Splunk / Datadog
  • Configurable retention
05

Continuous testing

Trust, but verify

Ongoing penetration testing, static and dynamic code analysis on every commit, and a public bug bounty with responsible disclosure.

  • Annual third party pentest
  • SAST + DAST on every PR
  • Public bug bounty
  • Dependency scanning
06

Data residency

Where your data lives

Choose the region your data is stored and processed in. Enterprise customers get dedicated tenants with isolated storage and compute.

  • Multi region availability
  • Dedicated enterprise tenants
  • Signed DPAs on request
  • Full data export at any time

Security you can show.

Not just claim.

Start your audit today.

Request a SOC 2 report, review our DPA, or spin up a trial tenant — all in under five minutes.