Security and privacy
Common questions and resources for security and privacy
Please review the following resources before reaching out about security questions. If your questions are unanswered below, please feel free to contact support for more info!
Cloud Service Agreement
EU Data Residency
We’ve updated our policy to host data exclusively on EU servers upon request and our subprocessors, OpenAI and Pinecone, are SOC2 Type II certified for robust data security.
Please let us know if you want to be hosted on EU servers.
Storing and processing data
The data you provide access to is securely stored in a SOC2 Type II certified vector database in the form of embeddings (mathematical representations). These embeddings are crucial for the app to answer questions.
When a request is made, the app uses the embeddings to find related pages and conversations, and shares only specific relevant snippets with OpenAI to generate the response.
FAQ
Can I enable MFA?
Yes, this is a custom item that we can arrange for you. Please contact our in-app support once on a paid plan.
How does eesel handle prompt injection attacks in Confluence?
The LLM is never given a token or API access to look at the confluence info via tools or any means so prompt injection is not possible. Each bot has a separate copy of the data and it can access nothing else, and this copy is maintained programmatically.
How do we ensure only certain Confluence spaces are shared with the bot?
The LLM is never given a token or API access to your Confluence environment. It only works with a copy of the data you explicitly share with the bot, and that copy is maintained programmatically
Last updated