Security

At PG:AI, security is fundamental to how we build and operate our platform. We implement comprehensive security measures to protect your data and ensure the reliability of our services.

Our Security Commitment

PG:AI was founded in 2024 with security as a core principle. We believe that trust is earned through transparency and consistent security practices, not just compliance checkboxes.

We are actively working with Drata to achieve SOC 2 certification, which we expect to complete within the next 6 months.

Security Framework

Defense in Depth

We employ multiple layers of security controls to protect your data:

Data Protection

Encryption at rest and in transit for all customer data

Access Control

Role-based access with multi-factor authentication options

Continuous Monitoring

24/7 monitoring of security events and automated alerting

Data Security

Minimal Data Collection: We only collect essential user information (email and name)
Secure Storage: All data is encrypted and stored with industry-leading providers
Access Restrictions: Strict controls on who can access customer data
Regular Reviews: Quarterly access reviews and security assessments

Compliance & Certifications

Founded in 2024 with security-first principles
Implementing industry best practices
Regular internal security assessments
Working with trusted security vendors

Shared Security Model

Our Responsibilities

Securing the platform infrastructure
Protecting data at rest and in transit
Maintaining application security
Managing vendor security
Incident response and monitoring

Your Responsibilities

Managing user access to your account
Using strong authentication methods
Keeping credentials secure
Reviewing user permissions regularly
Reporting security concerns promptly

Security Features for Customers

Authentication Options

Access Management

Data Protection

Vendor Security

We carefully select and monitor all third-party services used in our platform. All vendors must meet our security requirements and sign appropriate data processing agreements.

View Subprocessors

See the complete list of third-party services we use

Security Best Practices

Enable MFA

Turn on multi-factor authentication for all user accounts

Regular Reviews

Review user access and permissions quarterly

Strong Passwords

Use unique, complex passwords for all accounts

Monitor Activity

Regularly check account activity for unusual behavior

Reporting Security Issues

If you discover a security vulnerability or have concerns about our security practices:

Please report security issues directly to [email protected] rather than through public channels. We take all security reports seriously and will respond promptly.

Additional Information

For detailed security documentation, audit reports, or specific security questionnaires, please contact our security team. We’re happy to provide additional information under NDA for enterprise customers evaluating PG:AI.

Quick Actions

Contact Security

Security questions or concerns

View Subprocessors

Third-party services we use

Report an Issue

Report security vulnerabilities

Get Started

Account Intelligence

Data Dictionary

Account

Settings

Security

Our Security Commitment

Security Framework

Defense in Depth

Data Protection

Access Control

Continuous Monitoring

Data Security

Compliance & Certifications

Shared Security Model

Our Responsibilities

Your Responsibilities

Security Features for Customers

Vendor Security

View Subprocessors

Security Best Practices

Reporting Security Issues

Additional Information

Quick Actions

Contact Security

View Subprocessors

Report an Issue

Get Started

Account Intelligence

Data Dictionary

Account

Settings

Security

​Our Security Commitment

​Security Framework

​Defense in Depth

Data Protection

Access Control

Continuous Monitoring

​Data Security

​Compliance & Certifications

​Shared Security Model

​Our Responsibilities

​Your Responsibilities

​Security Features for Customers

​Vendor Security

View Subprocessors

​Security Best Practices

​Reporting Security Issues

​Additional Information

​Quick Actions

Contact Security

View Subprocessors

Report an Issue

Our Security Commitment

Security Framework

Defense in Depth

Data Security

Compliance & Certifications

Shared Security Model

Our Responsibilities

Your Responsibilities

Security Features for Customers

Vendor Security

Security Best Practices

Reporting Security Issues

Additional Information

Quick Actions