Security
Your data is safe with ALITA
Enterprise-grade infrastructure, per-user isolation, and transparent practices you can audit.
Isolated Containers
Every user gets a dedicated Kubernetes pod on GCP. No shared runtimes, no cross-contamination, no noisy neighbours.
- 1 pod per user on GKE Autopilot
- Dedicated persistent volume
- Network policies enforce pod isolation
End-to-End Encryption
All data is encrypted in transit and at rest. Your conversations and files are always protected.
- TLS 1.3 for all connections
- AES-256 at rest (GCP-managed keys)
- Cloudflare tunnel for zero-trust ingress
No Data Sharing
Your container data is yours alone. We never mine it for analytics, sell it, or use it to train AI models.
- No cross-user data aggregation
- No training on user content
- Staff access requires your explicit consent
Enterprise Infrastructure
Built on Google Cloud Platform with Cloudflare edge security. Continuous monitoring and automated threat detection.
- GCP with SOC 2, ISO 27001 compliance
- Cloudflare WAF and DDoS protection
- Automated vulnerability scanning
Secure Authentication
Clerk-managed authentication with multi-factor, passwordless sign-in, and automatic session management.
- MFA and passkey support
- JWT-based session tokens
- Credentials never stored by AlitaGPT
Durable Storage
Persistent disks with automatic backups. Your memory, files, and session history survive restarts and infrastructure events.
- SSD-backed persistent volumes
- Daily automated backups
- Point-in-time recovery capability
Compliance & standards
Our security posture builds on the compliance certifications of our infrastructure partners and our own operational practices.
Have security questions?
Our team is happy to discuss our security practices, share documentation, or schedule a call.
Contact security team