Security & auditability
These automations touch sensitive workflows. The default stance is least privilege, minimal retention, and auditable behavior.
Retention Defaults
Minimum log retention: 60 days
Upload retention: 30 days (default)
Longer retention available if your policy requires it.
Data Processing
- •Data processed only as needed for approved workflows
- •Processing location (your environment vs hosted) defined per project
- •No training on your data
Access Controls
- •Scoped service accounts where possible
- •Least privilege by default
- •Permissions reviewed before launch
Identity-Linked Logs
- •Who approved, who triggered, what changed
- •Timestamps, source, destination, outcome
- •Exportable for your compliance needs
Secrets & API Keys
- •Stored in secrets manager (never hardcoded)
- •Rotatable and scoped
- •Access-logged
Human-in-the-Loop
- •High-impact actions require approval
- •Confidence thresholds route uncertain cases to review
- •You stay in control
Rollback & Kill Switch
- •Every automation ships with a kill switch
- •Rollback plan documented
- •If something behaves badly, it stops immediately
NDA & Redaction
- •NDA available on request
- •Redaction guidance provided
- •Sample retention minimized by default