At Explane.ai, we take security seriously. As a platform that provides unified access to multiple AI models and services, we implement strict technical, operational, and organizational controls to ensure the confidentiality, integrity, and availability of your data.
All data transmitted through our platform is encrypted using industry-standard protocols (TLS 1.2 or higher). Sensitive data at rest is also encrypted using AES-256 or equivalent standards.
Our services run on secure, ISO-certified cloud infrastructure. We employ virtual private networks (VPNs), firewalls, and access control mechanisms to restrict system-level access.
Access to internal systems is strictly role-based and protected with multi-factor authentication (MFA). All API keys are scoped, revocable, and managed through secure vaults.
We continuously monitor systems for anomalies, with real-time alerting and log auditing. In the event of a security incident, we follow a documented incident response plan with clear escalation and remediation procedures.
We conduct regular internal security reviews, third-party penetration tests, and dependency patching. Critical vulnerabilities are remediated with priority.
If you believe you've discovered a vulnerability or security issue, please report it responsibly to: hello@explane.ai. We appreciate responsible researchers who help us keep our systems safe.
While we do not act as a controller of end-user data, we design our infrastructure with compliance in mind, including GDPR, SOC 2, HIPAA, and ISO 27001 where applicable.
Customers are responsible for securely managing their own API keys and credentials. Please do not share your keys publicly or embed them in client-side code.
For additional questions or documentation related to our security policies, contact us at: hello@explane.ai