Trust Center
Enterprise-grade security and privacy. Your data stays yours — we never train AI on it, never resell it, and delete it immediately after processing.
This information is only applicable to our Enterprise Platform. Our Free, Basic, Pro and Team users should refer to Disclaimer, Terms of Service and Privacy Policy.
Core Principles
Zero-Data Retention
All data inputs and outputs are processed temporarily and deleted immediately after delivery. No persistent storage of your queries or results.
Swiss Jurisdiction
Governed by Swiss law. Data stored in Switzerland or your preferred EU/Global region. GDPR and nDSG/nFADP compliant.
You Own Your Data
Full ownership of all submitted data and generated outputs. We never access, claim rights, resell, or train AI models on your information.
Data Processing & Privacy
We implement strict data handling practices aligned with GDPR, Swiss nDSG, and enterprise security standards.
- TLS Encryption — All data in transit protected using TLS encryption, including internal connectors, AI queries, and Data Lake requests.
- Region Selection — Choose your preferred data processing region for LLM requests. Available: EU, Switzerland, or as specified.
- No AI Training — Customer data is never used to train, improve, or develop any AI models or algorithms.
- Logical Separation — Strict data separation between customers. Enterprise clients receive physical separation.
- Audit Logs — Comprehensive security audit logging retained. Full traceability of data access and modifications.
Security Controls
40 controls across 6 domains — continuously monitored and audited.
Data Security
Endpoint Security
Product Security
Access Management
Security & Continuity
Organization Security
Sub-Processors
We partner with industry-leading providers who maintain equivalent security standards and data protection commitments.
Anthropic
Large Language Model
AWS
Cloud service provider
Cloudflare
Cybersecurity and data protection
Figma
Visual design and prototyping
GitHub
Source Code Management (SCM)
Google Workspace
Workspace productivity and collaboration
Metabase
Analytics and BI
Neo4J
Database for the AI agents and the Graph
Openrouter
AI Platform using in order to access AI models
Sentry
Monitoring and observability
Slack
Workspace productivity and collaboration
Vercel
Web Hosting Provider
Live Compliance Dashboard
Full list of ongoing audits, policies, security controls and live monitoring of sub-processors: trust-center.graph.swiss
Technical & Organizational Measures
- Physical Access Control — Data centers secured with surveillance, guards, and certified key systems.
- System Access Control — Multi-factor authentication, unique user IDs, complex password policies, and firewall protection.
- Data Access Control — Need-to-know access only. Regular penetration testing. Standard for data deletion and destruction.
- Availability Control — Backup processes, disaster recovery strategies, and regularly tested emergency procedures.
Public Procurement
Swiss Graph is registered as a tenderer on SIMAP.ch. CPV codes: 72300000 (Data Services), 72316000 (Data Analysis), 72319000 (Data Supply), 72320000 (Database Services), 72330000 (Data Standardisation & Classification).
View Tenderer Profile on SIMAP
Need More Details?
Download our Data Protection Addendum (DPA) and Terms of Agreement (TOA) for Enterprise customers, or contact us for security assessments and custom compliance needs.
For security assessments and custom compliance needs, please use the Support Center or the contact form in the footer.