Codegiant operates under SOC 2 Type II controls covering security, availability, and confidentiality. Reports and ongoing evidence are available through our Trust Center so your security and procurement teams can complete reviews without delay.
Data processing commitments, a published DPA, and privacy controls aligned with GDPR - so your customer obligations carry through to Codegiant.
Customer-ready data processing addendum reflecting GDPR obligations.
Choose where your data lives - US or EU regions with documented controls for each.
Standard contractual clauses and documented international transfer safeguards.
Configurable lifecycle and deletion to honor customer requests and policies.
Current subprocessor list maintained in the Trust Center with change notices.
Codegiant guarantees that customer code, prompts, and outputs stay inside your tenant. Your inputs and outputs are not used to train any underlying foundation model - yours or anyone else's.
Customer source code is excluded from training underlying foundation models.
Prompts, completions, and intermediate outputs stay inside your tenant boundary.
Inference runs against models with zero-retention agreements from underlying providers.
You retain ownership and rights to all code and artifacts the AI produces.
From identity and access through infrastructure, observability, and incident response - Codegiant gives teams the governance they need to modernize safely.
SAML SSO, role-based access, and organization controls govern who can reach sensitive systems.
Encryption in transit and at rest, scoped access, and least-privilege defaults across the platform.
Secure SDLC, dependency scanning, code review, and hardened production defaults.
Monitoring, audit trails, incident response, and ongoing vendor reviews.
Access policies, subprocessors, and current compliance posture from the Codegiant Trust Center - the same place your security review starts.
The questions that show up most often in procurement, legal, and security reviews - answered up front.
In your cloud. Applications built on Codegiant deploy directly into your own account across 10+ supported providers - AWS, GCP, Azure, Cloudflare, DigitalOcean, and more - so your data and traffic stay inside your perimeter, in the region you choose.
Access is scoped to your organization with SAML SSO, role-based controls, and full audit trails for sensitive actions.
No. Customer code, prompts, and outputs are excluded from training any underlying foundation models.
TLS 1.2+ in transit and AES-256 at rest, with managed keys across all storage tiers.
Yes - it's the default. One-click deploys push every application into your own cloud account or on-prem environment, so production data and traffic never leave your infrastructure.
Configurable lifecycle policies per workspace, plus on-request deletion supported by the published DPA.
Harness the power of enterprise-grade AI and 700+ connectors to build what’s next.