Security

1. Overview

Pragnanz is designed with security at its core. We implement industry-standard practices to protect your research data, credentials, and organizational information.

2. Data Encryption

• All data is encrypted in transit using TLS 1.2+
• Data at rest is encrypted using AES-256
• AI provider API keys are stored with application-level encryption
• File uploads use signed, time-limited URLs with scoped access controls

3. Infrastructure

• Hosted on AWS with SOC 2 compliant infrastructure
• Managed PostgreSQL database with automated backups
• Private networking between application components
• Automated security patching and dependency updates

4. Access Controls

• Role-based access control (RBAC) with granular permissions
• JWT-based authentication with secure token rotation
• Session management with configurable timeouts
• Audit logging for administrative actions

5. AI Data Handling

Your data is never used to train AI models. Research content is sent to AI providers solely to generate responses for your sessions. Vector embeddings are generated on-platform using local models — sensitive data never leaves our infrastructure for embedding purposes.

6. Vulnerability Management

• Continuous dependency scanning for known vulnerabilities
• Regular security reviews of application code
• Responsible disclosure program for external researchers

7. Incident Response

In the event of a security incident, we will notify affected customers within 72 hours, provide a detailed incident report, and implement corrective measures to prevent recurrence.

8. Contact

To report a security concern or vulnerability, contact us at security@pragnanz.ai.