Enterprise-grade security built into every layer of PrabhaXAi — from encryption at rest to continuous penetration testing.
We apply defence-in-depth across infrastructure, application, and organisational controls.
All data is encrypted in transit (TLS 1.3) and at rest (AES-256). Encryption keys are rotated quarterly and managed via AWS KMS.
Hosted on AWS with multi-region redundancy, private VPCs, and WAF rules. No direct database access from the public internet.
Annual third-party penetration tests and continuous automated vulnerability scanning using industry-leading tools.
Role-based access control (RBAC), SSO via SAML 2.0, enforced MFA, and full session audit logs for all admin actions.
SOC 2 Type II, ISO 27001, and GDPR compliance. Our data processing agreements (DPAs) are available on request.
24/7 security monitoring with a documented incident response plan. Affected customers are notified within 72 hours of any breach.
Each customer's data lives in logically separated stores. No cross-tenant data leakage is possible by design.
Backups run every 24 hours with 30-day retention and point-in-time recovery for the last 7 days.
All Anthropic employees with any system access undergo background verification before being granted credentials.
Every pull request is scanned for known vulnerabilities in third-party libraries using Snyk and GitHub Advanced Security.
We partner with HackerOne to run a private bug bounty program. Responsible disclosures are rewarded and acknowledged publicly.
We guarantee 99.9% uptime on all paid plans, with real-time status at status.prabhaxai.com and historical incident logs.
We take security reports seriously. Please report any issues through our responsible disclosure programme and we'll respond within 48 hours.
Report a Vulnerability →