Question 1

Do you use my data to train AI models?

Accepted Answer

No. Your conversations and connected data are never used to train AI models. Our model providers do not retain your data for training under our agreements with them.

Question 2

Does Bogi act without my approval?

Accepted Answer

No. Bogi asks for your confirmation before sensitive actions, such as sending an email on your behalf.

Question 3

How are my connected accounts secured?

Accepted Answer

Credentials and tokens for every app you connect are encrypted at rest with AES-256-GCM, scoped to the access you grant, and revoked when you disconnect the app.

Question 4

Is my data separated from other customers?

Accepted Answer

Yes. Data is scoped to your organization at the database level, and every task runs in an isolated sandbox. One organization cannot read data that belongs to another.

Question 5

Where is my data stored?

Accepted Answer

In the United States. Reach out if you have specific data-residency requirements.

Question 6

Are you SOC 2 certified?

Accepted Answer

Not yet. We hold a CASA Tier 2 certification today, and SOC 2 is on our roadmap. We are happy to walk your security team through the controls we have in place.

Question 7

How do I report a security vulnerability?

Accepted Answer

Email security@usebogi.com. We welcome reports from security researchers: we will acknowledge your report, keep you updated as we investigate, and credit you publicly if you would like. We do not run a paid bug bounty yet, but we genuinely appreciate responsible disclosure.

Security

Security is the foundation.

Your data never trains AI

Every task runs isolated

You approve sensitive actions

How we protect your data.

Encryption

Tenant isolation

Access controls

Credential security

Security built for AI agents.

What Bogi does

What Bogi never does

Compliance and certifications.

CASA Tier 2

GDPR

SOC 2

Security questions

You already have too much to do.
Let Bogi handle the rest.