Cemented AI
Security

Honest about where we are

Cemented AI is used by teams whose own customers ask about controls. We'd rather walk you through what we do today — and where we're heading — than print a checklist we can't back up.

Talk to sales

Account-scoped by default

Documents, conversations, and answers are tied to the account that created them. Every API request checks that the requester owns the record before returning it.

Sharing only when you invite a teammate

Projects let you grant specific colleagues access to a shared set of work. Outside a project, nothing crosses between accounts.

Encrypted in transit and at rest

Traffic to and from the app is encrypted in transit. Data at rest is encrypted by our underlying cloud and database providers.

Sign-in today is via Google

Project membership controls cross-user access. Ask us about Okta, Azure AD, broader SSO, and for Enterprise rollouts.

Staff access for support

Like most early-stage SaaS, our team has admin access for support and debugging. We don't read customer data routinely; if you'd prefer a no-staff-access arrangement, talk to us about Enterprise.

Talk to us about your requirements

If you have a specific control requirement — residency, retention, attestations, restricted staff access — write to [email protected] and we'll tell you where we are and what we can commit to.

Privacy details

Security FAQ

Where is data stored?
In US cloud infrastructure today. If you need a specific region, write to [email protected].
Do you train frontier models on customer data?
No. We don't train Claude, GPT, or any other foundation model on your content, and our LLM providers prohibit it under their standard API terms. On Free / Pro / Max we may use your queries and outputs internally for safety reviews, debugging, and product improvements. Enterprise comes with stricter controls on internal use — write to [email protected].
Do you have a report?
Not yet. We're an early-stage company; we'll be transparent about exactly where we are if you ask. Larger procurement conversations belong with [email protected].
Who at Cemented AI can see my data?
Our team has admin access for support and debugging — standard for early-stage SaaS. We don't read customer data routinely, and we'll scope tighter access (and the policies around it) as part of Enterprise.
What if we already have an AI governance policy?
Send it over. We'll give you a straight read on whether we can fit inside it today.
How do I get started?
Schedule a meeting and we'll walk through controls and where they sit on the roadmap.

Have your security team talk to us

Schedule a meeting and we'll go straight to specifics.

Talk to sales

Related

Privacy
Plain-English answers about how we treat your data. No training on customer content. Talk to us about the specifics.
Audit-Ready Answers
Every answer keeps its cited passages with it. When a colleague or reviewer picks it up later, they see what the first reader saw.
Sources You Bring
Search the open web, or upload the files and URLs you want to ask questions against. Retrieval is scoped to what you choose.
How It Works
The deterministic pipeline behind a Cemented agent — mostly code, with verified citations and removed hallucinations where the model is involved. A deeper read for technical reviewers.