Trust

Security at Airclou

Your support desk holds your customers' conversations. Protecting that data is a design constraint on everything we build, not a feature we added later.

Encryption in transit

Every connection to Airclou — browser, API, and widget — is encrypted with TLS. There is no unencrypted mode.

Tenant isolation

Every query is scoped to your tenant and workspace at the data layer. Cross-tenant reads are structurally impossible, not just forbidden.

Least-privilege access

Services and staff get the narrowest access that does the job — scoped database roles, scoped API keys, no shared superuser accounts.

Audit logging

Administrative and sensitive actions — sign-ins, permission changes, AI-taken actions — are recorded so you can see who did what, when.

Backups and recovery

Data is backed up on a regular schedule and restores are tested, so an infrastructure failure is an interruption — not a loss.

Responsible disclosure

Found a vulnerability? Tell us at support@airclou.com. We read every report and act on good-faith research, fast.