Security
Built for security teams that have already done this dance.
botanu was designed for finance, IT, and security to approve in the same review cycle. Enterprise controls, tenant isolation, and customer-configurable data handling. From day one.
Controls.
Tenant isolation
Core architecture
Role-based access (RBAC)
Shipping
SSO (SAML / OIDC)
Auth0-backed
Audit logs
Shipping
Encryption at rest and in transit
Baseline
Configurable data retention (30 / 60 days)
Available
Customer-configurable sub-processors
Available
SOC 2
Aligned
HIPAA positioning
Aligned
VPC deployment
Available on Enterprise
SCIM
Roadmap
What you control.
botanu processes telemetry about your AI workflows, not the underlying prompts, completions, or customer data. What's processed, where it lives, and how long it stays are all configurable by your team.
- ·Customer data stays inside your environment by default.
- ·Retention windows are set by you, not us.
- ·Sub-processors are listed publicly and updates require notice.
Want the full security brief?
We'll send the architecture overview, sub-processor list, and SOC 2 readiness summary under NDA.
Book a security review