Security by
Architecture.

We don't just rely on compliance checklists. Evnao's security is hardcoded into our RAG pipelines and API infrastructure, ensuring your data is structurally incapable of leaking.

Zero Data Retention (ZDR)

When Evnao routes a customer conversation to our proprietary neural networks, we enforce strict Zero Data Retention.

Your data is processed entirely in memory, ephemerally, to generate a response. It is instantly discarded and is never used to train public models.

Tenant-Isolated RAG

Your uploaded Knowledge Base documents are converted into vector embeddings and stored in heavily partitioned, tenant-isolated vector databases.

It is mathematically impossible for an AI agent in another workspace to retrieve or reference documents embedded within your workspace namespace.

The "Reviewer" Paradigm

Autonomous AI should not execute high-risk database mutations. Evnao's Generative UI system allows the AI to stage actions (like issuing a refund).

However, execution is blocked until a human agent (Reviewer) clicks "Approve." This hard-stops hallucination-driven errors.

BYOM (Bring Your Own Model)

For ultimate data sovereignty, enterprise clients can bypass our managed models entirely.

Plug in your own AWS SageMaker endpoint or private, locally-hosted LLM clusters. Evnao acts solely as the routing and UI orchestration layer, keeping your raw data securely within your own VPC.

Baseline Protections

AES-256 Encryption

All chat logs and user metadata are encrypted at rest using AES-256 block-level encryption. Data in transit is secured via TLS 1.3.

Automated PII Redaction

Credit cards, SSNs, and phone numbers are automatically redacted from chat logs before they are ever written to our database or sent to LLMs.

HMAC Webhook Signatures

All outgoing webhooks are signed using HMAC SHA-256, guaranteeing that the payloads your server receives originated exclusively from Evnao.

Found a vulnerability?

We operate a responsible disclosure program. If you believe you have found a security vulnerability, please report it directly to our engineering team.

security@evnao.com