SaneCite is built for teams whose documents are the crown jewels. Here's exactly how your data is handled — stated plainly, the same way we answer questions inside the product.
Every query, document, and answer is scoped to your account. Cross-tenant access is structurally impossible — and we test for it.
Encrypted in transit (TLS 1.2+) and at rest (AES-256), on Cloudflare's network.
Your documents never train any model. The model only ever sees the short evidence excerpts selected for a single question — never whole documents.
Set your own retention. Delete everything with one click and get a signed deletion receipt. Export your answers anytime.
Magic-link sign-in — no passwords stored to breach or phish. Sessions are HttpOnly, Secure, and expire.
Uploaded documents are treated as untrusted data (prompt-injection defenses), and every “supported” answer is independently verified before it's shown.
Runs entirely on Cloudflare — itself SOC 2 Type II and ISO 27001 certified — isolated from all other systems.
Every answer records its source, status, and version. When a source document changes, dependent approved answers are flagged stale.
Cloudflare — hosting, compute, storage, and AI inference (SOC 2 Type II, ISO 27001). Resend — transactional sign-in email. We notify customers before adding a new subprocessor.
Security questions, answered → — we answer the standard vendor-security questionnaire about ourselves, plainly. Need our DPA or anything specific? Email hi@saneapps.com.
Security Q&A · Privacy · Pricing · Sign in