UserBrowserIntelligenceNavigator AppBackend APIAuth · ProcessPostgreSQLMetadata · CacheGoogle CloudStorage · FilesYour DBCRM / SaaSAI APIsSlack · EmailOutputsDashboards · ReportsclientId isolation on every request

Enterprise-grade security

The secure way to put AI to work on your data

Encrypted everywhere, isolated by design, and never trained on your data — built on Google Cloud with enterprise authentication.

Free forever · No credit card required · Paid plans from $23.99/month

Trust & compliance

Built on standards you recognize

Google Cloud infrastructure, encryption everywhere, and enterprise-grade access controls.

Google Cloud

Enterprise infrastructure

AES-256 + TLS

Encrypted everywhere

GDPR & CCPA

Privacy-first practices

PCI-DSS

Payments via Stripe

SSO / SAML

Enterprise identity

2FA

Optional two-factor auth

Password security

Bcrypt + lockout protection

Full protection

Security built into every analysis

Four pillars — one architecture. Your data stays protected from ingestion to output.

Data in placeQuery your DB read-onlyIsolatedPer-account workspacesEncryptedAES-256 + TLSPCI-safeStripe handles cards

Data ingestion

Your data enters on your terms

Upload files, sync live connectors, query your database in place, or index documents — every path is tenant-scoped.

File uploadCSV · Excel → GCSDataFileLive connectorsCRM · Sheets → DBDataFileSQL databaseRead-only SELECTDataFileDocumentsPDF → embeddingsDataFileAll paths converge → tenant-scoped dataset loader
Select datasetPlan + credits checkLoad rowsAnalyzeAI insightsCache resultsDashboard / ReportEvery step scoped to your account · AI never trains on your dataExport PDF · PPTX · Slack · Email

Processing

From dataset to dashboard — securely

Every analysis step checks your plan, scopes to your account, and caches results you own.

Defense in depth

Security boundaries on every path

Security boundaries — enforced on every data pathJWT + 2FAclientId isolationAES-256 + TLSPlan gatesRead-only SQLNo AI trainingExport / deleteSSO / SAML

Access control

Authentication your IT team expects

Password security, optional 2FA, and Enterprise SSO/SAML — plus role-based module permissions.

PasswordBcrypt · lockout2FATOTP optionalSSO / SAMLEnterprise plansRolesModule permissions
FAQ

Security questions, answered.

What security measures does Xpherium implement to protect my data?

Xpherium encrypts all data in transit with TLS and at rest with AES-256, runs on Google Cloud infrastructure, isolates every customer workspace at the application and database layer, and enforces password security, optional 2FA, and Enterprise SSO/SAML. Payments are handled entirely by Stripe, a PCI-DSS Level 1 provider.

Does Xpherium use my data to train AI models?

No. Your datasets, documents, and questions are never used to train our AI models or any third party's models. We work with commercial AI providers under enterprise API terms that prohibit training on customer content.

Where is my data stored?

Your data is stored on Google Cloud infrastructure in the United States, encrypted at rest with AES-256. Google Cloud data centers maintain SOC 2, ISO 27001, and ISO 27017 certifications.

Can Xpherium modify data in my connected database?

We recommend connecting with a read-only database user. Intelligence Navigator's SQL connectors are built for analysis — querying your data in place rather than copying it out.

Do you support SSO, SAML, and two-factor authentication?

Yes. Intelligence Navigator supports secure password authentication with bcrypt hashing and brute-force lockout, optional TOTP two-factor authentication, and Enterprise SSO via SAML/OIDC for larger teams.

Can I export or delete my data?

Yes. Export your data anytime, delete individual files or datasets from within the app, or request complete account deletion.

How do I report a security vulnerability?

Report vulnerabilities via our security.txt at xpherium.com/.well-known/security.txt. We take responsible disclosure seriously.

Security researchers: security.txt · System status

Have a security question we didn't answer?

Our team can walk through our architecture, data handling, and security program — or complete your vendor security questionnaire.