Security

Security practices for Tangle products

Tangle Technologies, Inc. maintains a security program for hosted SaaS products, agent infrastructure, sandbox execution, model routing, and customer data handling.

Contact security Sub-processors Status

Coverage

Products covered by this page

Blueprint Agent ai.tangle.tools Sandbox infrastructure sandbox.tangle.tools Router infrastructure router.tangle.tools Browser Agent browser.tangle.tools Audit Agent audits.tangle.tools

Controls

How we protect customer data and hosted services

Access control

Production access is limited to approved personnel with MFA, role-based access, and documented onboarding and offboarding.

Change management

Code and infrastructure changes are reviewed before release, tracked in source control, and covered by automated checks where applicable.

Data protection

Tangle uses TLS for data in transit, encryption at rest where supported by the underlying storage service, and scoped secrets for hosted runtimes.

Sandbox isolation

Agent workloads run in isolated execution environments with bounded filesystem, process, and network access based on the product configuration.

Vulnerability management

We use dependency review, secret scanning, security testing, penetration-test remediation tracking, and targeted code review for sensitive changes.

Logging and monitoring

Security-relevant events are logged, reviewed, and retained according to internal policy so incidents can be investigated and remediated.

Vendor management

Sub-processors are reviewed for business purpose, data processed, region, and contract basis before handling customer data.

Incident response

Security events are triaged by severity, assigned an owner, and tracked through containment, remediation, customer communication, and review.

Data handling

Sandbox and model-vendor data handling

Customer workloads may include prompts, files, command output, screenshots, environment variables, and agent traces. Tangle limits processing to the services customers request and uses product-level controls to reduce accidental exposure.

Before outbound model-vendor calls, Tangle redaction controls are designed to remove authentication credentials, payment-card numbers, and government identifiers where detected. Customers choose the model vendor used by their workflow.

Compliance

Reports and questionnaires

Tangle is maintaining SOC 2 Type II readiness materials and audit evidence. Formal reports, customer questionnaires, and additional security documentation may be shared under NDA when appropriate.

Email [email protected] for report requests, responsible disclosure, vendor review, or security questionnaire routing.