Security commitment
Becide is designed for organisations that require strong data isolation, Australian residency, and traceable AI operations. This page summarises the architecture. Detailed responses are available for enterprise security reviews.
The six controls
Every deployment starts from these baselines. Enterprise reviews go deeper.
- 01
Data residency
Application, data lake, platform records, audit logs, AI inference, and auth — all in Australia.
- 02
Encryption
AES-256 at rest with per-client dedicated keys. TLS 1.2+ in transit. Becide never stores key material.
- 03
Tenant isolation
Every resource is scoped by organisation — storage, database keys, indices, and key references.
- 04
Authentication
Password policies, optional SSO, secure session cookies, JWT tenant claims resolved server-side.
- 05
AI safety
Read-only on approved layers. Every run has an ID with tools invoked and safety checks logged.
- 06
Audit & monitoring
Operational logs retained onshore. Alarms cover orchestrator errors, tool failure rates, and health.
Certifications and controls
What we can share now, and what enterprise reviews unlock.
- APP-aligned architecture
Built for Privacy Act 1988 (Cth) and Australian Privacy Principles compliance.
- AWS Sydney (ap-southeast-2)
Single-region deployment with tenant-scoped storage and search.
- Per-client encryption keys
Provisioned at onboarding, disabled on exit with mandatory destruction window.
- Read-only AI tools
The assistant cannot write to client archives or modify connector credentials.
- Encrypted question records
User questions are stored encrypted, never in plaintext logs. Models never see secrets.
- Enterprise review packet
Security questionnaires, architecture diagrams, and subprocessor lists on request under NDA.
Vulnerability & incident management
We apply security patches to managed infrastructure and review dependencies regularly. Security issues may be reported to hello@becide.com.
We maintain incident response procedures including breach assessment and client notification per our DPA and Privacy Policy.
We'll send the enterprise review packet, walk through the architecture, and answer the questions your team needs answered.