Skip to main content

Trust & Security

Your code never leaves your control.

Built from the ground up for mission-critical and regulated enterprises · on-prem, air-gapped, or private cloud. None of your code or data ever leaves your boundary.

Continuous conformance

Audit is once a year. Adapts is every commit.

Regulators ask for evidence of what changed and why. Adapts HC3 re-indexes on every commit so your deterministic map stays current · not a snapshot from the last audit cycle.

50% lower
conformance risk reported by a regulated energy company using Adapts HC3

Deployment

Run Adapts where your code already lives.

On-premise, air-gapped, or private cloud. Fully containerized · runs on Docker, Kubernetes, or OpenShift. In regulated organizations, code stays inside your boundary, processed in memory, and never retained.

On-Premise

Runs entirely within your data center. Code, metadata, and outputs never cross your boundary.

Available now

Air-Gapped

Fully disconnected deployment for classified, high-risk, and the most regulated environments. No outbound network required.

Available now

Private Cloud

Deploy in your own AWS, Azure, or GCP account. You own the keys, the VPC, and every resource.

Available now

Runs on Docker, Kubernetes, or OpenShift

Data control

Your code and data never leave your control.

They stay inside your environment · on-prem, air-gapped, or your private cloud. Request our security package for controls documentation, pen-test summaries, and a draft DPA.

Need our security package, controls evidence, or a signed DPA? security@adapts.ai

Security Architecture

Eight pillars of enterprise security

Bring your own KMS keys

You control encryption keys. Full key management with AWS KMS and customer-managed CMKs.

Structural metadata, not raw source text

Process metadata is strictly separated from customer data with distinct access controls and storage boundaries.

No-Touch Deployments

CI/CD automation eliminates manual production access. Zero human touch on production systems.

Access Transparency

Immutable audit logs for every data interaction. Who accessed what, when, and why.

Data Classification & Segregation

Strict policies separate customer and operational data with distinct access controls.

Multi-Tenant Isolation

Unique encryption boundaries per tenant. Complete isolation ensures no cross-tenant data leakage.

In-Memory Processing

Code is processed in memory and never persisted beyond the analysis window. Zero code retention.

Continuous conformance monitoring

Multi-framework alignment with industry standards. Policy enforcement that runs with every commit · not once a year.

Core Principles

Privacy by design

No Data Collection

Customer data is only processed within the customer-controlled environment and is never transferred for training or analytics. Your code stays yours.

Secure by Default

All data encrypted at rest using AWS KMS and in transit using TLS 1.2+. Short-lived credentials via AWS STS ensure minimal exposure windows.

Transparency & Auditability

Immutable, cryptographically signed logs retained per conformance needs. Customer-visible access records provide full accountability.

Data Retention & Deletion

  • Self-service project and tenant deletion
  • Inactive artifacts purged after 30 days
  • Encrypted backups retained 30 days, then securely shredded
  • Deletion requests processed within 30 days

Incident Response

  • 24/7 on-call rotation for security incidents
  • <30-minute incident acknowledgment SLA
  • Root cause analysis and notification within 72 hours
  • Public postmortems for security events

You're in control

Access & Audit

Real-time audit logs, customer-visible access records, role-based access control (RBAC).

Data Sovereignty

Lock data to specific regions/AWS accounts (Enterprise), exclude data from model fine-tuning, request full data deletion within 30 days.

Have a security question?

Our security team is available to discuss your requirements and answer any questions about our security posture.

Request security package