Trust center

Built for regulated, enterprise-grade workloads.

Quellra is engineered with security as a first-class primitive — not a feature retrofitted to a demo. Every action is logged. Every model is sandboxed. Every key is yours.

SOC 2 Type II

Audited annually

Report on request under NDA.

ISO 27001

Certified · 2026

Information security management.

GDPR · CCPA

Compliant

DPA available. EU SCCs supported.

HIPAA · FedRAMP

Roadmap · Q4 2026

Available today on Enterprise VPC.

Security architecture

Defense in depth across data, compute, and model.

Tenant isolation

Schema-per-tenant on Enterprise. Row-level on shared tiers. Per-customer KMS keys. BYOK available. No cross-tenant model context.

PII redaction at ingress

Microsoft Presidio + custom redactors strip PII before it touches the LLM. Reversibly for retrieval, irreversibly for training corpora.

Prompt-injection defenses

Input sanitization, tool allowlists, output validators, sandboxed execution, and a verifier model that flags suspicious tool calls.

Immutable audit log

Hash-chained, append-only log of every agent step, tool call, and policy decision. SIEM export to Splunk, Datadog, Elastic.

Secrets in Vault

HashiCorp Vault + AWS KMS. Never in env vars. Quarterly rotation. Annual pen-test plus continuous bug bounty via HackerOne.

Deployment options

Managed multi-tenant (default). Single-tenant VPC. On-prem. BYOC (your AWS, Azure, or GCP account). Air-gapped on request.

Subprocessors

Published & versioned

View list →

AI use policy

Your data never trains foundation models

Read policy →

Disclosure

security@quellra.com · PGP

Coordinated disclosure honored. Hall of fame published.