Tellodb
Sign up

Section

Fundamentals

OverviewQuickstartInstallCore Concepts
Platform

Trust & Security

Tellodb is built with security and privacy as first principles. SOC 2 compliant, GDPR ready, and fully auditable.

Security by Design

Tellodb is built from the ground up with security as a core requirement. The core engine is a single Rust binary with zero runtime dependencies — no npm, no pip, no system libraries. This dramatically reduces the attack surface compared to languages like Python or Node.js.

All data is encrypted at rest (AES-256) and in transit (TLS 1.3). API keys are stored as SHA-256 hashes and compared using constant-time comparison to prevent timing side-channel attacks.

Encryption

AES-256

At rest. TLS 1.3 in transit.

Auth

SHA-256

API keys hashed. Constant-time comparison.

Runtime Deps

0

Single Rust binary. No npm/pip/system deps.

Auth Model

RLS + Clusters

Row-Level Security + namespace isolation.

Infrastructure & Isolation

  • Multi-tenant isolation: every API key is scoped to a cluster_id. Data is partitioned at the database level using RLS policies.
  • Platform proxy: the Qwik frontend authenticates all requests and prefixes entity_id with the user's namespace. The Rust engine never sees raw user IDs from other tenants.
  • Vercel Edge + Supabase: both platforms are SOC 2 certified. Our dependency on their infrastructure means inheriting their security posture.
  • Self-hosting option: for organizations requiring full control, the core engine runs as a standalone binary with no external dependencies and no telemetry.
  • No data sharing: we never use customer data for training, benchmarking, or product improvement without explicit opt-in.

Compliance

MetricStandardStatusDetails
SOC 2 Type 2In ProgressAuditor: Vanta. Expected Q3 2026.
GDPRCompliantStandard Contractual Clauses available. DPA on request.
HIPAAConfigurableSelf-hosted deployment. BAA available for enterprise.

Contact trust@tellodb.com for security questionnaires, penetration test summaries, and architecture diagrams.

Trust Center

Visit the Tellodb Trust Center at /platform/trust for the full security overview, including encryption details, data processing agreements, breach notification procedures, and infrastructure architecture diagrams.

For urgent security matters: security@tellodb.com. For compliance documentation: trust@tellodb.com.