Security at DocSift
Your documents contain sensitive information. Here is how we protect them.
Encryption
Your documents are encrypted in transit with TLS 1.3 and at rest with AES-256 encryption. Both our database (Neon Postgres) and file storage (Vercel Blob) encrypt all data at rest automatically.
Access Control
Only you can access your documents. There are no employee access tools, no admin panels, and no backdoors. Every server action verifies your identity and ownership before returning data.
Data Handling
Documents are processed securely in memory for AI extraction. Neither Anthropic nor OpenAI store your data beyond the processing window. We never use your documents to train AI models.
Deletion
Delete your documents anytime with a single click. We perform hard deletes — your files are permanently removed from both our database and file storage immediately. No 30-day retention.
Infrastructure
Hosted on Vercel (SOC 2 Type II compliant) with Neon Postgres (SOC 2 Type II compliant). All infrastructure runs on major cloud providers with enterprise-grade physical and network security.
Questions?
If you have security questions or want to report a vulnerability, contact us at support@doc-sift.com.