> ## Documentation Index
> Fetch the complete documentation index at: https://docs.gc.ai/llms.txt
> Use this file to discover all available pages before exploring further.

# Security Overview

> Learn about GC AI security architecture

## Enterprise-Grade Security

Updated: April 17, 2026

GC AI implements comprehensive security measures to protect your data and maintain compliance with industry standards:

* End-to-end encryption using AES-256 at rest and TLS 1.2+ in transit
* Organization-scoped data isolation ensuring each organization's data is logically separated
* SOC-2 compliant vendors for all data processing and storage operations
* SOC-2 Type II certification (report available upon request with NDA)
* US-based infrastructure with all servers located exclusively in the United States

This security architecture matches the standards set by leading enterprise cloud providers like Google Cloud.

## LLM Provider Security

GC AI partners with industry-leading LLM providers, each with strict data handling policies:

* **OpenAI**: Implements zero-data retention policy with no training on API data ([source](https://openai.com/policies/api-data-usage-policies))
* **Anthropic**: Maintains zero-data retention agreement and no training on API data ([source](https://www.anthropic.com/legal/aup))
* **Google**: Provides dedicated Gemini API service with no training on customer data ([source](https://ai.google.dev/terms))
* **Cohere**: Opted out of training on customer data ([source](https://cohere.com/terms-of-use))

<Note>
  All our LLM providers are contractually bound to maintain data privacy and
  security standards substantially similar to our own.
</Note>