Trust & Security

Your content is your edge. We treat it that way.

DesignTech AI runs on managed, enterprise infrastructure with tenant isolation, role-based access, and clear data ownership, so your team can move fast without putting that edge at risk.

The measures

How we keep your content secure

Concrete controls, built into the platform and enforced on every request.

dns

Enterprise infrastructure

The platform runs entirely on managed, audited providers, each of which maintains its own public trust center and independent certifications.

  • checkApplication hosting on Render
  • checkManaged PostgreSQL on Supabase
  • checkFile storage on Google Cloud Storage
  • checkAI execution on Google Vertex AI
shield_lock

Tenant isolation

Every organization's data is separated at the database with PostgreSQL Row-Level Security, enforced on every query. Your content powers your workspace only.

  • checkRow-Level Security on all tenant data
  • checkOrganization scoping in the app and storage layers
  • checkIsolation verified by an automated check in our build
key

Identity & access

Authentication is handled by Auth0. Access is role-based: users resolve to super admin, organization admin, or member, with permissions scoped to their organization.

  • checkAuth0-backed authentication
  • checkRole-based access control
  • checkPermissions keyed to your organization role
smart_toy

Controlled AI processing

AI requests go directly to Google Vertex AI with no third-party routing intermediary. Enterprise model services do not use your prompts or content to train their models.

  • checkNo third-party routing of AI requests
  • checkYour data is not used to train public models
  • checkExecution logs are short-lived and redacted for secrets
verified_user

You own your output

Everything produced in your workspace is yours to use, publish, edit, and keep. Your content, brand, and source material stay inside your tenant.

  • checkOutputs are yours to use and publish
  • checkYour sources never cross into another tenant
  • checkExport your content and assets at any time
policy

Clear data handling

We collect what we need to run the service and nothing we can't explain. Our Privacy Policy sets out what we store, why, and how to reach us about your data.

  • checkPlain-language Privacy Policy
  • checkData Processing Agreement available on request
  • checkA real person answers security questions
Certified foundation

Built on infrastructure trusted by the most demanding teams

DesignTech AI runs entirely on managed, independently audited providers. Each maintains a public trust center and holds the leading security certifications for the layer it operates.

Render

Application hosting

Runs the application and APIs on isolated, private-networked services with managed TLS and encrypted secrets.

verifiedSOC 2 Type II verifiedSOC 3 verifiedGDPR DPA

Supabase

Managed PostgreSQL

Hosts every tenant's data with encryption at rest and in transit, automated backups, and point-in-time recovery.

verifiedSOC 2 Type II verifiedISO 27001 verifiedHIPAA verifiedPCI DSS

Google Cloud

File storage & Vertex AI

Stores files on Cloud Storage and runs every AI request on Vertex AI, across Google's enterprise platform.

verifiedSOC 1/2/3 verifiedISO 27001/27017/27018 verifiedISO 27701 verifiedPCI DSS verifiedHIPAA verifiedFedRAMP High

Auth0 by Okta

Identity & authentication

Handles authentication and session security on a platform built specifically for enterprise identity.

verifiedSOC 2 Type II verifiedISO 27001/27017/27018 verifiedPCI DSS verifiedHIPAA verifiedCSA STAR

Bring your security team to the table

We'll walk through our controls, share the documentation you need, and answer every question your security review has.

arrow_forwardRequest a demo