Tenant isolation
Every customer is a separate tenant. Each tenant’s knowledge, API keys, conversations, and usage live in their own isolated database scope, and every request is authenticated and scoped to the caller’s organisation. Pooled plans use a dedicated database per organisation on shared infrastructure; Enterprise can run on a fully dedicated cluster in a region you choose.
Encryption
- In transit — all traffic between your browser, the widget, the API, and our database runs over TLS.
- At rest — data is stored on managed infrastructure (MongoDB Atlas) with encryption at rest enabled.
Authentication & access
- Passwords are hashed with PBKDF2 (200,000 iterations, per-user salt) — never stored in plain text.
- Dashboard sessions use signed, expiring tokens; the embeddable widget uses scoped API keys you can rotate.
- Administrative/control-plane actions require a separate admin key.
- We apply least-privilege access internally and gate production access.
Grounded by design
The assistant only answers from facts you teach it. Pooled plans generate answers via vetted inference providers under no-training, zero-retention terms; Enterprise runs fully self-hosted / dedicated, so data never leaves your infrastructure. Your knowledge is never used to train external models. In Extractive mode, answers are composed verbatim from your stored facts and verified deterministically, which also makes prompt-injection far harder to exploit.
Payments
Billing is handled by Stripe, a PCI-DSS Level 1 certified provider. Card details are sent directly to Stripe and never touch our servers — we only store your plan and subscription status.
Infrastructure
- Application & inference: Amazon Web Services (containerised, stateless API tier).
- Database: MongoDB Atlas with automated backups.
- Web app & CDN: Vercel.
- Rate limiting and per-plan usage limits protect against abuse and runaway costs.
Backups & availability
Managed databases are backed up automatically, and the stateless API tier scales horizontally so we can recover and scale without losing data.
Enterprise & compliance
Enterprise plans add a dedicated cluster and region, your own model size, SSO, audit logging, and a signed Data Processing Agreement (DPA). If you need a DPA, sub-processor list, or security questionnaire completed, contact security@halluciblock.com.
Responsible disclosure
We welcome reports from security researchers. If you believe you’ve found a vulnerability, please email security@halluciblock.com with details and steps to reproduce. Please act in good faith, avoid privacy violations or service disruption, and give us reasonable time to respond before any public disclosure. We won’t pursue legal action against good-faith research that follows this policy.
Contact
Security team: security@halluciblock.com. For data-protection matters, see our Privacy Policy.