Security and Compliance
VaultCrux is designed for private data handling with verifiable outputs.
Security posture
- Tenant-scoped isolation for customer data.
- Signed receipts and proofpack surfaces for auditability.
- Header-based API authentication and session-based browser authentication.
- Shield policy controls for risky tool and mutation paths.
Recommended reading
- Compliance Summary
- Shield Security
- Security Whitepaper
- DSAR Procedure
- Offboarding Runbook
- Receipt Verification
- API + Auth
- Architecture
Security contact
Report suspected vulnerabilities through your customer support channel or designated security contact. For sensitive reports, include impact, affected endpoint/tool flow, and reproduction details.