Uzera is built from the ground up with security, privacy, and data sovereignty at its core. We process your code to build Knowledge Trees, but we never store, share, or train on your source code.
Source code is processed in memory during scanning. We generate structured Knowledge Trees as derived metadata. No copies of your source files are retained.
Data in transit is encrypted with TLS 1.2+. Data at rest is encrypted using AES-256. All encryption keys are managed through industry-standard key management services.
Every agent interaction is recorded in hash-chained, tamper-evident logs. Each entry links cryptographically to the previous one, ensuring integrity of the complete audit trail.
We never use your codebase data, Knowledge Trees, Rules, or agent interaction logs to train, fine-tune, or improve any AI or machine learning models.
Granular permissions with least-privilege principles. Team admins control who can access Knowledge Trees, Rules, and audit data within each workspace.
Hosted on SOC 2 compliant infrastructure with physical security, redundancy, and disaster recovery. Regular penetration testing and vulnerability scanning.
All data transmitted between your systems and Uzera is encrypted with modern TLS.
All stored data is encrypted at rest using AES-256 with managed encryption keys.
Documented incident response plan with notification within 72 hours of confirmed breach.
Standard Contractual Clauses for EU transfers. Full data subject rights honored.
Periodic penetration testing and vulnerability scanning with prompt remediation.
All internal access to customer data is logged, monitored, and subject to review.
We take security reports seriously. If you've discovered a security issue, please report it responsibly to our security team.
Report to security@uzera.com