Security

Your data is in safe hands.

Your submissions and IP are protected with enterprise-grade encryption, strict access controls, and a simple promise: we never train AI on your data.

Trust & Safety

Enterprise standard

SOC 2 aligned. No AI training on your data. Built for the confidentiality demands of the leading biotech teams.

SOC 2

SOC 2-aligned controls across every system and process that touches your data.

AES-256

Your data is encrypted at rest with AES-256 — the standard trusted by financial institutions.

TLS 1.3

Everything in transit is encrypted with TLS 1.3, secure from your browser to our servers.

SSO & MFA

Enterprise authentication with single sign-on and multi-factor, so only your team gets in.

Zero training

We never train AI on your data. Your submissions and IP stay yours, full stop.

Our promise

Your data is never training data.

The work you bring to Deffai — submissions, study data, intellectual property — stays yours. We never train AI on it, and we don't allow third parties, including foundation models, to either.

How we protect your data

Confidential by design.

Encrypted at every step

Your data is encrypted in transit with TLS 1.3 and at rest with AES-256 — the same standards trusted by financial institutions, from your browser to our servers.

Access only for your team

Enterprise single sign-on and multi-factor authentication mean only the people you authorize ever reach your data. Nothing is open by default.

Your IP stays yours

We never train AI on your data, and we don't allow third parties — including foundation models — to either. We use it only to learn your business context.

Questions

Security FAQ

Is my data encrypted?

Yes. Everything in transit is encrypted with TLS 1.3, and your data is encrypted at rest with AES-256 — the standard trusted by financial institutions.

Do you use my data to train AI?

No. We do not allow third parties, including foundation models, to train on your data. We use it only to learn your business context.

Who can access my data?

Access is limited to the team you authorize, through enterprise single sign-on and multi-factor authentication. Your submissions and IP stay yours, full stop.

Is Deffai SOC 2 compliant?

We operate SOC 2-aligned controls across every system and process that touches your data, built for the confidentiality demands of leading biotech teams.

Have a question about security?

Talk to our team about your data, your controls, and what working with Deffai looks like.

Talk to our team