Security at Crux Logic

Your trust is our priority. We implement industry-leading security measures to protect your data and ensure your AI assistant operates safely.

End-to-End Encryption

All data transmitted between your browser and our servers is encrypted using TLS 1.3. Your sensitive data is also encrypted at rest using AES-256 encryption.

OAuth 2.0 Authentication

We never store your third-party passwords. All integrations use OAuth 2.0, meaning you grant us limited, revocable access without sharing credentials.

Secure Infrastructure

Our platform runs on enterprise-grade cloud infrastructure with SOC 2 compliance. Data is stored in secure, geographically distributed data centers.

Privacy by Design

We follow the principle of minimal data collection. We only access the data necessary to provide our service, and you can disconnect integrations anytime.

Regular Security Audits

Our systems undergo regular security assessments and penetration testing. We continuously monitor for vulnerabilities and apply patches promptly.

Action Confirmations

Sensitive actions like sending emails or modifying files require explicit confirmation. You stay in control of what our AI does on your behalf.

Access Controls

Our team follows strict access control policies. Only authorized personnel can access production systems, and all access is logged and audited.

DDoS Protection

Our infrastructure includes enterprise-grade DDoS protection and rate limiting to ensure service availability and protect against attacks.

Data Protection

Data Encryption

  • • TLS 1.3 for data in transit
  • • AES-256 encryption at rest
  • • Encrypted database backups
  • • Secure key management

Access Security

  • • Multi-factor authentication
  • • Session management
  • • Rate limiting
  • • IP-based access controls

Compliance

Google API Services Compliance

Our use and transfer of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements. Specifically:

  • • We only use Google user data to provide the features you explicitly request
  • • We do not use Google user data to train, improve, or develop generalized AI/ML models
  • • We do not sell, rent, or trade Google user data to any third party
  • • We do not use Google user data for advertising, remarketing, or interest-based targeting
  • • We request only the minimum API scopes required for each feature
  • • All Google user data is transmitted using TLS 1.2 or higher and stored with AES-256 encryption
  • • You can revoke access at any time from your Google Account settings or our dashboard

For full details, see our Privacy Policy, including Section 3 (Google API Services User Data Policy Compliance) and Section 4 (Google Data Access Scopes).

AI Safety Measures

Confirmation Workflows

Before executing sensitive actions like sending emails, creating files, or modifying your calendar, our AI presents you with a confirmation prompt showing exactly what will happen. You have full control to approve, modify, or reject any action.

Scoped Permissions

When you connect third-party services, we request only the minimum permissions necessary for each integration. You can see exactly what access each connection has and revoke it at any time from your dashboard.

Audit Trail

Every action taken by the AI on your behalf is logged and visible in your activity history. You can review past actions, see what was done, and track the AI's behavior over time.

Content Filtering

Our AI models include safety filters to prevent generation of harmful, inappropriate, or dangerous content. We continuously improve these safeguards based on the latest AI safety research.

Vulnerability Disclosure

We take security vulnerabilities seriously. If you discover a security issue, please report it responsibly:

  • • Email us at security@cruxlogic.com
  • • Include details about the vulnerability and steps to reproduce
  • • Allow us reasonable time to investigate and fix the issue
  • • Do not publicly disclose until we've addressed the issue

We appreciate security researchers who help us keep our platform secure and will acknowledge contributions in our security advisories.

Questions About Security?

Our team is here to help address any security concerns you may have.

Contact Security Team
← Back to Home