Eter chat

Security and privacy

We keep HR answers private, consistent, and compliant. Each customer runs in an isolated tenant, hosted in the EU by default.

Single-tenant isolation
OAuth with domain allowlists
EU hosting by default

Key guarantees

Single-tenant per customer

Each customer gets an isolated stack (API, storage, vector DB). No shared data plane.

Citations from your sources

Answers are grounded in your documents with expandable citations. If content isn’t found, the assistant refuses.

Transcripts off by default

You control retention. Keep nothing, or set a short window (e.g., 7 days) per tenant.

OAuth with domain allowlists

Google or Microsoft sign-in. Only emails from your company domain are allowed.

EU hosting or your own infrastructure

Default is EU single-tenant hosting. Self-host inside your cloud or datacenter if preferred.

Backups and restore tested

Daily object backups and periodic vector snapshots. We verify restoration for each tenant.

Hosting models

Managed EU single-tenant (default)

We deploy a dedicated stack in the EU. No data is shared between customers.

Self-host

Run the stack inside your VPC or on-prem with your own storage, identity, and keys.

How your data is handled

Ingestion

You upload policy PDFs, docs, or exports to your tenant. Files remain inside that tenant.

Question answering

Queries are answered against your corpus with reranking and strict citation. If the answer isn’t present, the assistant says so.

Retention and logs

Transcripts are disabled by default. Minimal logs for health and usage; no PII in logs. You choose retention policies.

Controls in place

  • Encryption in transit with TLS 1.3
  • Encrypted object storage for files
  • Role-based access; admin/member separation
  • Daily backups and periodic restore tests
  • No data used to train public models
  • Per-tenant secrets; no shared credentials

Compliance

We sign a GDPR Data Processing Agreement on request. TOMs include access controls, encryption, backup testing, and incident response. We also provide an Incident Response plan and a Logging & Retention policy. Sub-processors, if any, are listed in the security pack.

Request security pack

Common questions

What is logged?

Service health and usage counters (timestamps, counts). We avoid storing query or answer text unless you enable transcripts with a retention window.

Does data leave the tenant?

No. Documents and answers stay within your tenant. External calls are limited to identity (OAuth) and optional email notifications.

Can we self-host entirely?

Yes. We support deployments inside your VPC or on-prem with your storage, identity, and keys.

How do backups work?

Objects are backed up daily; vector indexes are snapshotted periodically. We verify restoration for each tenant.