Privacy-First Architecture

Your content stays on our infrastructure. We run our own AI models, never share data with third parties, and give you full control over your information.

Compliance & Certifications

πŸ›‘οΈ

Privacy-First Design

Built from the ground up to minimize data collection and maximize user control.

πŸ‡ͺπŸ‡Ί

GDPR Aligned

Designed to support GDPR requirements including data export and deletion.

πŸ‡ΊπŸ‡Έ

CCPA Aligned

Built to support California Consumer Privacy Act requirements.

πŸ”’

Self-Hosted AI

Your data never leaves our infrastructure. No third-party AI providers.

Security Measures

We implement multiple layers of security to protect your data.

Data Encryption

All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption. Your content is protected at every stage.

Account Security

Secure authentication with password hashing and session management. API tokens can be revoked at any time.

Content Isolation

Each customer's content is logically isolated. Your data is never mixed with other accounts or used to train our models.

Self-Hosted Infrastructure

We run our own AI models on dedicated infrastructure. Your queries never leave our secure environment.

Regular Backups

Automated database backups with point-in-time recovery capabilities. Data stored redundantly across our infrastructure.

Data Export & Deletion

Export all your data anytime. Request full account deletion and we remove all associated content within 30 days.

Self-Hosted AI Infrastructure

Unlike services that route your data through OpenAI or other providers, we run our own AI models on dedicated infrastructure we control.

  • Self-hosted AI language models
  • Private embedding models for semantic search
  • Dedicated vector database for fast retrieval
  • Encrypted database for structured data
  • Your data never leaves our infrastructure
System StatusAll Systems Operational
API
99.99%
Widget CDN
99.99%
Database
99.98%
Voice Services
99.95%

Data Handling

What data do you collect?

We store the content you provide (crawled website pages, uploaded documents), conversation logs between your chatbot and visitors, and basic usage metrics. Visitor data is limited to conversation content - we do not track visitors across sites.

Where is data stored?

All data is stored on secure infrastructure managed by our team. We use industry-standard databases for structured data and vector search. All AI processing runs on our own servers.

How long is data retained?

Your content and conversation data is retained while your account is active. When you delete a source, its data is removed immediately. Account deletion removes all data within 30 days.

Is my content used to train AI models?

No. Your content is only used to generate responses for your chatbot. We do not use customer data to train, fine-tune, or improve our models. Your data stays isolated to your account.

Can I export my data?

Yes. You can export your conversation history and source content from the dashboard. We provide data in standard formats for portability.

Do you use third-party AI providers?

No. We run our own AI models on infrastructure we control. Your prompts and content are never sent to OpenAI, Anthropic, or other external AI services.

Security Questions?

Need our security documentation for your compliance review? Have questions about our security practices? Our security team is here to help.

  • security@siteanswerai.com
  • Request SOC 2 Report
Contact Security Team