Trust Center
Everything you need to know about security, privacy, and compliance at Proxi.
Compliance
Status reflects our current posture and is updated as our program matures. We are happy to walk security teams through our controls in detail.
Documents and resources
Security Overview
Our data architecture, encryption, access controls, sub-processors, and what we deliberately do not promise.
Read the security page→Privacy Policy
What data we process for each integration, how long we keep it, and how to request deletion.
Read the privacy policy→Terms of Service
The agreement that governs use of Proxi, including our service commitments and acceptable use.
Read the terms→Sub-processors
The third-party services we rely on to deliver Proxi, and what each one processes.
View sub-processors→Data Processing Agreement
A DPA covering our obligations as a data processor, including breach notification and deletion. Available to all customers.
Request a DPA→Report a security issue
Found a vulnerability or have a security concern? Our team reviews every report.
Email our security team→Our security commitments
- All data is encrypted in transit (TLS) and at rest (AES-256).
- Each customer's data is isolated in its own workspace, with tenant-level scoping enforced on every request.
- Internal access to production systems is limited to essential personnel on a least-privilege basis.
- Credentials and integration tokens are stored encrypted on a per-connection basis.
- We never sell customer data, and we never train AI models on it without explicit consent.
- We notify affected customers of a confirmed breach within 72 hours.
- Customers can delete their data at any time, per connection or for the entire workspace.
Questions?
For security, privacy, or compliance questions, or to request our DPA or other documentation, contact us at security@getproxi.ai.