SOC 2 Type II, ISO 42001, per-tenant encryption, optional VPC deployment and the option to bring your own model keys. We treat your code and design data like it's our own.
Every workspace's data is encrypted with a dedicated key. Bring your own for Enterprise.
Customer prompts never leave your tenant. No cross-customer training.
Customer fine-tunes are tenant-scoped and never inferred outside the workspace.
AWS PrivateLink and Azure Private Endpoint available.
OAuth-scoped to specific repos. We don't request what we don't need.
Every agent action logged with cryptographic chain-of-custody.
Pre-signed DPA, EU Standard Contractual Clauses, and AI Addendum on request.
Annual third-party pen tests. Reports available under NDA.
Public program on HackerOne with up to $25k bounty.
security@pixicode.com · 24-hr acknowledgment SLA.
Maintained publicly with 30-day notice on additions.
Real-time uptime and incident history at status.pixicode.com.
CAIQ, SIG Lite and a 320-question internal questionnaire ready in the Trust Center.
Request the Trust Center →