Skip to main content

Security at
Erold

Your data security is our top priority. We implement industry-leading security practices to protect your projects and information.

256-bit
AES Encryption
TLS 1.3
In Transit
EU
Data Centers
GDPR
Compliant

Security Features

Comprehensive security measures to protect your data at every level.

Data Encryption

  • TLS 1.3 for all data in transit
  • AES-256 encryption at rest
  • End-to-end encryption for sensitive data
  • Encrypted database backups

Access Control

  • Role-based access control (RBAC)
  • Per-agent API key permissions
  • Multi-factor authentication (MFA)
  • SSO / SAML (Enterprise)
  • Session management and timeouts

Infrastructure

  • EU data center hosting
  • Regular security audits
  • DDoS protection
  • Web Application Firewall (WAF)
  • 99.9% uptime SLA

Compliance

  • GDPR compliant
  • SOC 2 Type II practices
  • Data Processing Agreement (DPA)
  • Regular penetration testing
  • Incident response plan

Our Data Practices

We Never Train AI on Your Data

Your project data, tasks, and knowledge base content are never used to train AI models. Your data is yours alone.

Data Retention

You control your data. Delete your account and all associated data is permanently removed within 30 days.

Third-Party Sharing

We never sell your data. We only share data with service providers necessary to operate our platform, all bound by strict data processing agreements.

Data Portability

Export all your data at any time via our API. No vendor lock-in.

Report a Vulnerability

We take security seriously and appreciate responsible disclosure. If you discover a security vulnerability, please report it to us.

Security Contact

security@yet.lu

Please include a detailed description of the vulnerability, steps to reproduce, and any relevant screenshots or logs. We aim to respond within 24 hours.

AI Agent Security

Special security considerations for AI-powered workflows.

Per-Agent API Keys

Create separate API keys for each AI agent with granular read/write/admin permissions. Revoke access instantly if needed.

Activity Audit Trail

Full audit log of all actions with agent identification. See exactly what AI did vs humans for complete accountability.

Scope Limitations

Restrict AI agent access to specific projects or workspaces. Implement least-privilege access for AI tools.

Questions about security?

Our team is happy to discuss security requirements for your organization.

Contact Security Team security@yet.lu