We take security seriously. Our platform is designed from the ground up to protect your data and privacy.
We act as a stateless pass-through gateway. Request bodies and responses are streamed directly to/from the provider and are never stored on our servers, logs, or databases.
All data transmitted between your client, our servers, and the inference providers is encrypted using TLS 1.3. We enforce HTTPS for all connections.
API keys are hashed using industry-standard algorithms before being stored. We cannot see your API keys after they are generated.
Our infrastructure provider is SOC2 Type II compliant, ensuring rigorous security controls and auditing procedures are in place.
We run a bug bounty program. If you believe you've found a security issue, please report it to us immediately.
Report Vulnerability