Back to home

Security at Omniscient

How we protect your most personal data

Protected Credentials and Controlled Access

Connector OAuth credentials and provider secrets are protected server-side, and access to product data is gated behind authenticated sessions plus ownership checks.

Encrypted Transport

Traffic to deployed Omniscient environments is intended to run over HTTPS so data is encrypted in transit between your browser and the application.

Zero Training on Your Data

Your personal memories, conversations, and context are never used to train AI models. We use inference-only — your data improves your AI, not anyone else's. This is legally binding in our terms.

OAuth-Only Integrations

We never ask for or store your passwords to third-party services. All integrations use OAuth 2.0 with minimal permission scopes. You can revoke any connection at any time.

User Controls and Data Hygiene

Omniscient is built to minimize unnecessary collection, support source disconnects, and give users direct control over what data is indexed, exported, or deleted.

Privacy-Respecting Analytics

INT-01

We use Plausible Analytics — a privacy-first analytics tool that collects zero personal data, no cookies, no fingerprinting, no IP storage. We track only aggregate page views and feature usage to improve the product. Your identity is never part of any analytics event.

Dependency Security Scanning

SEC-18

Every dependency in the Omniscient codebase is continuously scanned for known vulnerabilities using automated tools. Our CI/CD pipeline blocks any deployment that introduces a high-severity vulnerability.

Dependabot alertsnpm audit on every PRSocket.dev scanningWeekly dependency review

SOC 2 Compliance Roadmap

SEC-17

We are actively working toward SOC 2 Type II certification. Our infrastructure and processes are being aligned with the Trust Services Criteria.

Security controls documented✓ Complete
Access management policies in place✓ Complete
Audit logging on all AI data access✓ Complete
Incident response procedures✓ Complete
Third-party penetration test⟳ In progress
SOC 2 Type I auditPlanned
SOC 2 Type II certificationPlanned

Security is an ongoing discipline

Questions or disclosures: security@omniscient.ai