Skip to main content

Security and Privacy

At Teckel AI, the security and privacy of your data are our top priorities. We have implemented a multi-layered security strategy to ensure that your information is always protected.

Data Isolation

Each organization's data is isolated in our multi-tenant architecture. We use a combination of Postgres Row Level Security (RLS) and application-level security controls to enforce strict data separation. This multi-layered approach means that even in the unlikely event of a bug in one area, our system should prevent cross-organizational data access. All data is tagged with your unique Organization ID, and all API calls and dashboard views are scoped to your organization.

API Security

Access to the Teckel AI API is secured through multiple layers:

  • API Key Authentication: Keys are generated with cryptographically secure random values and prefixed for easy identification (e.g., tk_live_ for production)
  • Secure Storage: We store only SHA-256 hashes of API keys (never the keys themselves)
  • Request Validation: All incoming data is validated for structure, size, and sanitized
  • Rate Limiting: Per-organization limits prevent abuse while ensuring fair resource allocation
  • No Browser Exposure: Do not embed API keys in client-side code. For web apps, call your own serverless/edge route that holds the key and uses the SDK.

User Privacy

We treat all of your data, including queries and document snippets, as confidential customer data. We do not use your data for any purpose other than providing our services to you. We never resell or use your data other than providing our services for your use. You retain full ownership of your data at all times.

Compliance and Data Retention

We use Supabase, hosted on AWS, to store Teckel AI data. All customer data at Supabase is encrypted at rest with AES-256 and in transit via TLS. We maintain all trace data you share with us including question, response, and other metadata, as well as analytics processed by our system for a length as determined by your Teckel AI Plan. For enterprise clients we can implement organization-specific retention policies. If you choose to leave our service, we can export your data to you for your convenience and securely purge it from our systems. We will never sell your data to third parties.

Fail-Safe Design

The Teckel Tracer SDK prioritizes your application's stability:

  • Non-Blocking Operations: SDK calls never block your application flow
  • Graceful Degradation: Service unavailability results in silent failure (your AI chatbot continues working)
  • Automatic Recovery: Traces are queued locally and submitted when service resumes
  • Timeout Protection: Configurable timeouts prevent hanging requests
  • Error Isolation: SDK errors are caught and logged without affecting your application

This design ensures that Teckel AI enhances your system without becoming a critical dependency.

Third-Party Components

We may rely on trusted, enterprise-grade third-party services for our infrastructure, including OpenAI, Anthropic, and Google for our AI models.