Security

At Layerbrain, your security is our top priority. We implement advanced measures to protect your data and interactions, ensuring a secure environment for our users.

Please note that this is a technical preview, and our security practices may evolve as we grow.

Infrastructure Security

Our robust infrastructure forms the backbone of Layerbrain's security framework. Key components include:

  • Encryption: All data in transit and at rest is encrypted with AES-256 for maximum security.
  • End-to-End Encryption: All data and metadata generated and consumed by "Brain"—including conversations, graphs, and other workspace interactions—is fully end-to-end encrypted. In the event of a data leak, your information remains inaccessible, even to us.
  • Isolated Virtual Machines: User sessions run on short-lived, isolated instances that are erased immediately after use, leaving no residual data.
  • Zero-Trust Architecture: A zero-trust model ensures that every request is fully authenticated and authorized.

Product Security

Our products are meticulously designed to safeguard your interactions and data. Key product security features include:

  • Secure APIs: All API endpoints are secured with robust authentication and authorization protocols to prevent unauthorized access.
  • Isolated Execution Environment: User-generated software runs on isolated virtual machines, preventing cross-user data access and ensuring data integrity.
  • Passwordless Authentication & Google Login: We offer secure authentication methods, including email verification and passwordless login, as well as Google authentication for enhanced security.

Data and Privacy

Protecting your data is paramount. Our data and privacy measures include:

  • No Training on User Data: We do not train our AI systems on your data. Instead, we rely solely on synthetic data to enhance our systems.
  • User Control: Users have complete control over what information Layerbrain collects. All data collection preferences can be managed through your account.
  • Data Destruction: We automatically destroy user sessions and any collected data immediately after the session ends, ensuring no residual data remains.
  • Account Deletion: Users can request account deletion by contacting Layerbrain directly. We handle these requests promptly and securely.

Compliance

We adhere to the highest standards of data protection and privacy regulations, including:

  • General Data Protection Regulation (GDPR): Ensuring that all data handling practices comply with GDPR standards.
  • California Consumer Privacy Act (CCPA): Complying with CCPA requirements to protect the privacy rights of our users.
  • Ongoing Compliance Efforts: We are committed to pursuing additional compliance certifications as our services expand.

As Layerbrain is currently in a technical preview phase, our security measures and practices are subject to change. We are continually learning and improving to provide you with the safest and most reliable services possible.