Adaptive Business Intelligence · Fully functional · Ready to marketStart a conversation →
Stellence AIStellence AI

Security

How we protect your data

1. Overview

Stellence AI takes security seriously. We implement industry-standard technical and organisational measures to protect your data, our platform, and our infrastructure. This page outlines our security practices and commitments.

2. Data Encryption

  • In transit: All data transmitted between your device and our servers is encrypted using TLS 1.3
  • At rest: Data stored in our systems is encrypted using AES-256 or equivalent
  • Backups: Backups are encrypted and stored in secure, geographically distributed locations

3. Infrastructure & Hosting

We use reputable cloud providers with robust security certifications (e.g. SOC 2, ISO 27001). Our infrastructure is designed for high availability, redundancy, and resilience. Access to production systems is restricted, logged, and monitored.

4. Access Control

  • Principle of least privilege: access granted only as needed
  • Multi-factor authentication (MFA) for administrative and sensitive access
  • Role-based access control (RBAC) for platform users
  • Regular access reviews and revocation of unused credentials

5. Application Security

  • Secure development practices and code review
  • Dependency scanning and timely patching
  • Input validation and output encoding to prevent injection attacks
  • Protection against common vulnerabilities (OWASP Top 10)

6. Monitoring & Incident Response

We monitor our systems for suspicious activity, anomalies, and potential threats. We maintain an incident response process to detect, contain, and remediate security incidents. Affected parties will be notified in accordance with applicable law (e.g. GDPR breach notification).

7. Data Protection & Privacy

We comply with UK GDPR and the Data Protection Act 2018. Personal data is processed in accordance with our Privacy Policy. We implement data minimisation, purpose limitation, and retention policies. Data processing agreements are in place with sub-processors where required.

8. AI & Third-Party Services

Our platform integrates with AI providers (e.g. OpenAI, Google). We select providers with strong security and privacy commitments. Data shared with AI providers is governed by their terms and our data processing arrangements. We do not use customer data to train third-party AI models without explicit consent.

9. Physical & Personnel Security

Where applicable, we ensure physical security of facilities. Personnel with access to sensitive data undergo background checks where appropriate. Security awareness training is provided to staff.

10. Your Responsibilities

You are responsible for: keeping your credentials secure; using strong passwords and MFA where available; not sharing access inappropriately; and reporting any suspected security issues to us promptly.

11. Reporting Security Issues

If you discover a security vulnerability, please report it responsibly to contact@stellenceai.com. We will acknowledge receipt and work to address the issue. We ask that you do not disclose the vulnerability publicly until we have had a chance to address it.

12. Contact

Stellence AI Business Intelligence Ltd
20 Wenlock Road, London N1 7GU
Security: contact@stellenceai.com

Privacy PolicyTerms of Service