Security

Last Updated: Jul 1, 2025

Our Commitment to Security

At VectorForgeAI, we prioritize the security and confidentiality of your data. We have implemented comprehensive security measures to protect your information from unauthorized access, disclosure, alteration, and destruction.

Infrastructure Security

• All data is encrypted in transit using TLS 1.3 (or TLS 1.2 for devices not supporting TLS 1.3)
• Data at rest is encrypted using AES-256 encryption
• Our infrastructure is hosted in ISO/IEC 27001 compliant data centers
• Regular security audits and penetration testing are conducted
• Continuous monitoring for suspicious activities and potential threats

Authentication & Access Control

• Strong authentication mechanisms including multi-factor authentication
• API keys with granular permissions
• Role-based access control for internal systems
• Principle of least privilege for all system access

Data Protection

Your data protection is our priority:

• Conversation messages and LLM responses are stored securely and automatically deleted after 30 days
• We store embeddings of vector searches as SHA256 values, protecting the actual search terms
• Regular data backup procedures with encryption
• Data deletion capabilities through our API
• Complete data removal when users unsubscribe from our service

Third-Party Risk Management

We carefully select and regularly review our third-party service providers:

• Microsoft Azure (our LLM infrastructure provider for OpenAI) maintains robust security standards
• Stripe handles all payment processing with PCI DSS compliance
• All third-party providers are evaluated for security and compliance standards

Privacy & Compliance

We are committed to protecting your privacy and complying with applicable regulations:

• GDPR compliance for EU data subjects, including:
• Data subject access rights (access, rectification, erasure, etc.)
• Data processing agreements with all processors
• Legal basis for all processing activities
• Privacy by design and default in all systems
• CCPA/CPRA compliance for California residents
• Data localization options for customers with geographic restrictions
• Transparent privacy policies and cookie policies
• Data Protection Impact Assessments for high-risk processing
• Appointment of a Data Protection Officer (DPO) to oversee compliance

Security Compliance

We are committed to maintaining high security standards:

• Regular security assessments and continuous improvement
• Employee security awareness training

For Enterprise customers, we offer:

• SOC2 Report access
• Enhanced SLA guarantees
• Advanced security features including SAML + OKTA integration

Reporting Security Vulnerabilities

We take security vulnerabilities seriously. If you believe you've found a security issue in our service, please contact us immediately at: security@vectorforgeai.com

We appreciate your help in keeping VectorForgeAI secure and will investigate all legitimate reports.

Security Updates

We continuously improve our security measures. This security page will be updated to reflect significant changes to our security practices.

Contact Us

For more information about our security practices or to report concerns, please contact us at: security@vectorforgeai.com