Trust Center

Security and trust, built in

Prerun governs how your business context reaches AI. We hold it to the standard that real work demands: encrypted, access-controlled, auditable, and built on certified infrastructure.

Contact security Start free

SOC 2 Type II infrastructurePCI DSS Level 1 paymentsGDPR-ready data handlingTLS 1.2+ encryptionScoped, auditable access

Platform security

Controls on every layer

The protections that keep your governed Knowledge safe as it flows to every connected agent.

Scoped access keys

Every agent connects with a least-privilege key, scoped to exactly the Knowledge and operations you allow.

Encrypted everywhere

Traffic is TLS-encrypted in transit and your data is encrypted at rest on certified cloud infrastructure.

Public and private isolation

Private context stays internal. Nothing is exposed publicly unless you deliberately publish it.

Roles and permissions

Govern who can author, review, publish, and connect, with role-based access throughout Prerun Studio.

Audit and versioning

Every change and retrieval is versioned and attributable, so you always know what an agent saw and when.

Hardened by default

Strict transport security, clickjacking protection, and content-type hardening on every response.

Isolated data stores

Product and marketing data live in separate databases; your governed Knowledge is never co-mingled.

No training on your data

Certification proves readiness without fine-tuning. Your Knowledge is never used to train third-party models.

Compliance

Built on certified infrastructure

Prerun runs on providers that maintain leading security certifications. Each handles a focused part of the platform, under its own audited controls.

SupabaseManaged Postgres database and authentication

SOC 2 Type IIHIPAAGDPR

RailwayMCP Server and REST API hosting

SOC 2 Type II

VercelStudio and marketing application hosting

SOC 2 Type IIGDPR

Cloudflare R2Asset and file storage

SOC 2 Type IIISO 27001GDPR

StripeSubscription billing and payments

PCI DSS Level 1SOC 2

AnthropicAI generation and Bootcamp grading

SOC 2 Type IINo training on your data

ResendTransactional email delivery

SOC 2

Certifications listed above are held by the named providers. For Prerun's security overview, data processing terms, or to discuss enterprise and compliance requirements, contact our team.

Your data, governed

You stay in control of your Knowledge

Your data stays yours

You own your Knowledge. Export it, change it, or remove it at any time. We never sell it.

Governed distribution

Agents retrieve only what their scope allows, over the REST API and MCP Server, and only what you have published.

Always current, fully tracked

Updates publish once and propagate everywhere, with a full version history and rollback.

Have a security or compliance question?

Talk to our team about Prerun's security posture, data handling, and enterprise requirements.