Security & Data Isolation
Your data. Your agents.
Nobody else’s.
Federal R&D proposals contain sensitive IP, pricing strategy, and team composition. We built the architecture assuming that — not as an afterthought.
Four layers of isolation. Independently enforced.
Customer Isolation
Row-Level Security, tenant-scoped.
Unique storage prefix per account. Database queries are RLS-scoped to your tenant ID. Your AI context window never includes another customer's data — enforced at the database and storage layers, not just application logic.
Proposal Isolation
Sandboxed per portal.
Each proposal portal is its own workspace. Agents working on Proposal A cannot read Proposal B's data unless you explicitly enable cross-proposal library access. Access control is set by your admin, not ours.
Agent Isolation
Pre-trained. Individually provisioned.
Your company gets its own AI team at signup. These agents are pre-trained on federal R&D compliance patterns but provisioned with access ONLY to your data. They learn from your uploads, your corrections, and your verified decisions — nobody else's.
Collaborator Isolation
Section-level. Role-level. Revocable.
Invite subcontractors and SMEs to specific sections of specific proposals at specific phases. View, comment, edit — each permission is granular. Revoke access instantly. Every action is audited with actor, timestamp, and change record.
The Claude Promise
No model training on your data. Ever.
Built on Anthropic's Claude API with strict enterprise no-training terms. Your proposals, your company data, your compliance decisions are sent as input for each request — but are never used to train or fine-tune the underlying model. Your IP stays yours.
Structured Memory Architecture
We remember for you. Not about you.
Our proprietary structured memory system stores verified compliance decisions, expert curation history, and proposal templates in tenant-isolated database rows — not in model weights. Your memory is retrievable, auditable, and deletable. It belongs to you, not to a training pipeline.
Collaboration Administration
Easy for admins. Clear for collaborators.
Internal Team
Your admin invites team members by email. Each gets role-based access to the proposals they're assigned to. All-proposals or per-proposal — your admin decides.
External Collaborators
Subcontractors, university partners, and SMEs get stage-scoped access to specific sections. They upload their materials, review their sections, and see nothing else. Revoke when the phase closes.
Full Audit Trail
Every login, every edit, every comment, every access grant and revocation is logged with actor name, timestamp, and IP. Exportable for your own compliance records.
What we are. What we aren't. Yet.
We are: A SaaS platform with strong tenant isolation, audit logging, encryption at rest and in transit, and a binding commitment to never train on your data.
We are not (yet): SOC 2 Type II, FedRAMP, or ITAR certified. Most SBIR/STTR proposal development work doesn’t require those — but we’re honest about it.
Roadmap: SOC 2 targeted for Year 2. Contract management and compliance tracking coming in Year 1. Additional certifications based on customer requirements.
Questions about security? Ask Eric directly.
Raise them in your application. We'll tell you honestly whether we're a fit today.
Start an Application