Security & data

Every workspace on kbie is separated at the database level using Postgres Row-Level Security (RLS). One customer’s Brand Brain is never visible to another — the isolation is enforced by the database itself, not just by application code.

Your data is encrypted in transit (TLS) and at rest. Every connection to kbie runs over HTTPS, end to end.

Today, your Brand Brain is stored in India (Mumbai). We’ve built kbie to expand to additional regions as our customers require it — region-specific data residency is on our roadmap, and we’ll provision local storage for enterprise and regulated customers as we grow.

• You own your data. You can export your Brand Brain and delete it at any time.
• Nothing learns silently.Your brain only learns what you approve — kbie surfaces each proposed learning with its evidence, and it enters your brand’s truth only when you accept it.

Your Brand Brain is stored only with kbie. We never use your brand data to train a shared or third-party AI model. To generate your content, the relevant context is sent to your chosen model’s API solely to produce your output — never to train it. The major model providers’ API terms state the same: data sent through their API isn’t used to train their models.

Your verified brand truth lives in your Brand Brain — a store you own — never locked inside a single AI model. kbie already works across multiple engines: your brand is audited across ChatGPT, Claude and Gemini. Broader engine choice and bring-your-own-model are on our roadmap.

kbie runs on Supabase (database), Vercel (application), and Cloudflare (delivery and storage) — established providers with their own enterprise-grade security programs. Our current sub-processors are listed in our Data Processing Agreement, available on request.

We’re actively pursuing formal security certification (SOC 2) and will publish our progress here. We’d rather tell you exactly where we stand today than imply a badge we haven’t earned yet.

Found a vulnerability? Email security@kbie.ai. We welcome responsible disclosure and will respond quickly.