Enterprise Security
Security & Privacy
Lindr is built with enterprise-grade security as a first-class citizen. Our architecture ensures your data is protected at rest and in transit.
Compliance
We are committed to maintaining the highest standards of data security. Lindr is built to support SOC2 Type II and GDPR requirements.
Encryption
All customer data, including LLM logs and API keys, are encrypted at rest using AES-256 and in transit via TLS 1.3.
Data Handling Policy
Lindr operates as a secure proxy. We process requests in two primary modes:
- Analysis Only (Default): The gateway extracts lexical and semantic signals in memory. The body of the request is forwarded to your provider and then discarded. We store only the resulting behavioral metrics.
- Session Logging (Opt-in): If enabled, we store truncated snippets of the request and response to provide debugging context in your dashboard.
Security Features
Isolated database schemas per organization
Automatic PII detection and masking
Multi-factor authentication (via Clerk)
Role-based access control (RBAC)
Detailed audit logs for all configuration changes
Regular automated security scanning
Vulnerability Disclosure
If you believe you have found a security vulnerability in Lindr, please contact us at [email protected].