Security

Designed for teams who can't take chances with their documents.

Giving an AI tool read access to your company's knowledge is a real decision. This page documents exactly what Knorra does with your data, what it never does, and how that's enforced.

SOC 2 Type II in progressEU/UK infrastructureRead-only by defaultNever trains on your data
The promises

Eight commitments. Every one technically enforced.

Knorra never trains on your data.

Your documents, tickets, and messages are not used to train models, ours or anyone else's. Contractually documented in every DPA. Architecturally, retrieval-augmented inference reads your tenant's index per request; no batch export to any training pipeline exists.

Inference traffic to model providers is governed by zero-retention agreements. No training, no fine-tuning, no logging beyond 30-day operational telemetry.
Read-only access, by default.

Knorra requests the narrowest read scopes a connector offers. Write scopes are opt-in, per source, and can be revoked at any time from the workspace settings.

Scope inventory is visible on the workspace's security page. Every scope change is logged.
You see and approve every action.

Findings are surfaced, never applied. No silent edits, no background agents acting on your data. When an action requires write access, you approve it on the finding card and we record the trail.

Action records include the actor, the model trail, the evidence shown, and the timestamp. Exportable from the audit log.
Findings from personal sources stay private to the person.

Anything sourced from a personal Google Drive or other individual-account connector is visible only to that person. Personal-source findings are never team-wide, ever.

This is enforced at the index layer: per-source ACLs gate every retrieval. There is no admin override that bypasses it.
Knorra never reads your Gmail.

Email is out of scope. We do not request the Gmail OAuth scope, we do not index it, and we will not add it to the product roadmap.

If a future connector ever touches an inbox-like surface, it will appear as a separate, distinctly-named integration with its own opt-in.
Sub-processors are fully disclosed.

Every sub-processor we use is listed publicly, including the data category each one touches. Subscribers receive email notice at least 30 days before any change.

Subscribe to change notices from the footer of any Knorra page.
EU/UK data residency.

Knorra SaaS runs on EU/UK infrastructure. Your data is stored and processed there. Region is not customer-selectable in the standard SaaS product. Enterprise customers can choose a dedicated independent deployment with the region of their choice.

Documented in every DPA. Cross-region transfer for processing does not occur in the standard SaaS plan.
Encryption everywhere, with managed keys.

Data in transit uses TLS 1.3 with HSTS. Data at rest uses AES-256 with envelope encryption. Per-tenant keys are rotated automatically every 90 days. On-demand rotation is available.

Enterprise dedicated deployments support bring-your-own-key (AWS, GCP, Azure KMS). Keys stay in the customer's control plane.
How data flows

Stored and processed on EU/UK infrastructure.

Knorra SaaS runs on EU/UK infrastructure. Indexing and embedding happen there. Model providers see individual retrieval-augmented requests, governed by zero-retention agreements.

Enterprise customers can choose a dedicated independent deployment with the region of their choice.

KNORRA SAAS · EU/UK INFRASTRUCTUREYour sourcesIndexerEmbeddingsKnorra indexAudit logModel providerzero-retentionVerifier modelzero-retentionresidency boundary
Stored and processed on EU/UK infrastructure
Per-request only, zero retention
Sub-processors

Every third party that helps run Knorra.

Sub-processors are the third-party services that help run Knorra, such as hosting, AI inference, and email. We disclose every one and notify you before any change.

Subscribers receive email notice at least 30 days before any sub-processor is added, replaced, or its data scope changes. Subscribe from the footer.

Party
Purpose
Region
Vercel
Marketing site and application hosting
Global
Neon
Database (Postgres)
EU (Frankfurt)
Anthropic
Primary AI model inference
EU
OpenAI
Verifier-pass AI inference (independent second model)
EU
Inngest
Background job processing
EU / US
Resend
Transactional email
EU
Stripe
Billing and payments (no document data)
UK / EU
Better Stack
Uptime monitoring and status page
EU
Sentry
Error tracking
EU
Axiom
Application logs
EU
Cloudflare
Edge network and DDoS protection
Global
Google Workspaceinternal
Knorra staff email (no customer data)
Global
Plausible
Privacy-friendly analytics (cookieless)
EU
Audits & certifications

Independent, documented, current.

SOC 2 Type II
In progress · audit window Q3 2026

Report available under NDA as the window closes.

ISO 27001
Roadmap · 2026

Gap assessment complete. Stage 1 scheduled.

Annual penetration test
Cure53 · last test March 2026

Executive summary available under NDA.

GDPR & UK GDPR
Compliant

DPA signed at sign-up. Custom terms for Business.

Got a question we haven't answered?
Talk to our security team. A real person, usually within four hours.

We'll send our SOC 2 report (under NDA), the latest pen-test summary, our sub-processor list, and our architecture overview ahead of the call.