Security & Device Verification

Every user goes through a chained verification process. Each step must pass before the next begins:

① Device Detection — We detect your device type (Android or iPhone) and verify at the hardware level. Administrators can restrict access to Android only, iPhone only, or both — but at least one mobile device type is always required.

② Carrier & Identity — Android: silent SIM verification directly with your carrier (Bell, Rogers, Telus, Vidéotron, Freedom Mobile in Canada; AT&T, T-Mobile, Verizon and 4 more in the US). VoIP and prepaid phones are rejected. iPhone: Apple device attestation and App Store account verification. Then email or enterprise SSO authentication.

③ Final Confirmation — Fully configurable: SMS code + Authenticator app (dual-layer), Authenticator app alone (TOTP), SMS code alone, or disabled entirely — depending on your organization's security requirements. Skipped automatically if your SSO provider already sent a code — no duplicate verification. Each Interest Point can enforce its own setting.

🔍 AI Identity Verification — When in doubt about identity, the AI can optionally send an SMS confirmation code or even call the number directly to ask verification questions — an optional step you can enable based on your security requirements.

CHAINED VERIFICATION · FULLY CONFIGURABLE · IMPOSSIBLE TO SPOOF

Silent carrier-level SIM verification (Android). Your identity is confirmed instantly by your carrier — no codes to enter. For iPhone, Apple device attestation and App Store account verification are used instead, achieving equivalent security.

CARRIER-LEVEL PROOF

Multiple 2FA options: Authenticator apps (Google Authenticator, Microsoft Authenticator, Authy — TOTP standard), SMS OTP, or both combined. Administrators choose which methods are required per role.

CONFIGURABLE 2FA

Unique cryptographic identifier (ECDSA P-256) bound to your device via Web Crypto API. Private key stored as non-extractable in IndexedDB — literally cannot be exported by JavaScript.

UNIQUE DEVICE SIGNATURE

AES-256-GCM encryption for all stored credentials and sensitive data. Optional customer-managed encryption keys for maximum control.

AES-256-GCM ENCRYPTION

TLS 1.3 encryption on all connections with certificate pinning on critical endpoints.

TLS 1.3 SECURE TRANSIT

Connect your own storage, identity providers, messaging systems, data targets, and code repositories through our unified Connections Hub. 14 storage providers supported: Google Drive, OneDrive, Dropbox, Amazon S3, GCP Cloud Storage, Azure Blob, Custom URL, Platform Storage, and 6 more (FTP, SFTP, WebDAV, SMB, Local/On-Prem, MinIO). Configure overflow strategies — failover, round-robin, cascade, replicate, or archive — so your data flows to backup storage automatically. Dual storage allows data to exist in multiple locations simultaneously for maximum resilience.

YOUR DATA, YOUR CONTROL

Store, organize, and query your documents (PDF, Word, images, videos, audio, URLs) in an encrypted space unique to your organization. But the Knowledge Vault is far more than storage — it's enterprise-grade Business Intelligence that was previously reserved for Fortune 500 companies paying $100+ per user per month. Thanks to a fundamental shift in AI capabilities, this level of intelligence is now accessible to every organization for a fraction of the cost.

🔍 Universal Search — One Word Finds Everything

Type a single word or phrase and instantly find every related item across your entire organization: documents, chat messages, video timestamps, audio transcriptions, meeting notes, emails, images with matching captions, and even handwritten notes that were scanned and indexed. The AI understands context — search for "safety protocol" and it finds the regulation, the training video at minute 12:34 where it was discussed, the chat thread from last Tuesday, and the PDF attachment on Interest Point #47.

🎥 Video & Audio Intelligence

Upload a video and the AI automatically transcribes, indexes, and makes every second searchable. Search inside videos the same way you search Google. Find the exact moment a topic was discussed in a 2-hour meeting. The same applies to audio files, voice memos, and recorded AI phone calls — every word is indexed and cross-referenced with your documents, Interest Points, and chat history.

📌 Ownership & Interest Point Flagging

Every document attached to an Interest Point is automatically flagged to its designated owner. When a document changes, the owner knows. When a search reveals a document they haven't reviewed, it's highlighted. When a regulation update impacts 12 documents across 5 Interest Points, every owner is notified simultaneously — with precise context about what changed and why it matters to them.

🧠 Why This Costs $2 Instead of $100

A fundamental shift in AI technology has made enterprise intelligence accessible to everyone. What required specialized infrastructure, dedicated data science teams, and enterprise contracts just months ago can now be delivered through modern AI models at a fraction of the cost. We pass this efficiency directly to you — no markup, no artificial tiers, no feature-gating. The same intelligence that powers billion-dollar enterprises is now available to a 5-person team for roughly the price of a coffee per user per month.

Security scanning, duplicate detection, multi-image extraction, auto-summaries, and policy updates across entire document groups are all included. No add-ons, no surprises.

ENTERPRISE INTELLIGENCE · UNIVERSAL SEARCH · $2/USER

The platform provides a unified Connections Hub with 5 integration categories, each with security at every step:

• Storage (14 providers) — Google Drive, OneDrive, Dropbox, Amazon S3, GCP Cloud Storage, Azure Blob, Custom URL, Platform Storage, FTP, SFTP, WebDAV, SMB, Local/On-Prem, MinIO. Each with encryption toggle on imports.
• Identity — SSO, SAML, SCIM provisioning for enterprise user management.
• Messaging — Microsoft Teams, Slack, Discord — for automated notifications and alerts.
• Data Targets — CRM (Salesforce, HubSpot, Pipedrive), Accounting (QuickBooks, Xero, FreshBooks), HR (BambooHR, Workday, ADP), Project Management (Jira, Asana, Monday, Trello, Linear), E-commerce (Shopify, Square).
• Code Repos & Repository AI — Connect your Git, GitHub, GitLab, or Bitbucket repositories and make your code intelligent. The AI indexes your entire codebase via embedding, enabling semantic search, change impact analysis, vulnerability detection, and automatic documentation. Every commit is analyzed — the AI understands your code like a senior developer would. A service rarely offered by companies, but one we consider essential for your technical teams' productivity.

Overflow & Resilience: Configure failover, round-robin, cascade, replicate, or archive strategies so data automatically routes to backup storage when primary storage is full or unreachable. Health monitoring with up to 10 alert channels (in-app, email, SMS, AI phone call, Datadog, webhook, Slack/Teams, PagerDuty, and more).

DLP Scanning: All imported files pass through automatic Data Loss Prevention scanning before entering the Knowledge Vault.