Security & Trust
How Libertas Linkkeeps your organization's data private — stated plainly, without overclaiming. Questions? Email support@libertaslink.com.
Org-isolated
Scoped to your organization on every request
Encrypted
TLS 1.3 in transit, AES-256 at rest
Export & delete
Your data is yours, anytime
Tenant isolation
Libertas Link is multi-tenant by design. Every record, document, vector, and file is scoped to your organization, and that scoping is enforced on every request and every AI retrieval. One organization can never read another's data — this isolation is the foundation of how the product is built.
Encryption
Your data is encrypted in transit using TLS 1.3 (including post-quantum key agreement at the network edge) and encrypted at rest with AES-256. Access to production systems is restricted and logged.
Built on Cloudflare
Libertas Link runs on Cloudflare's global network — the same infrastructure trusted by a large share of the internet. Storage, search, and AI inference all run on Cloudflare primitives, and customer data is handled by the named providers in our subprocessor list.
Subprocessors
We rely on a small, vetted set of infrastructure providers to operate the Service. Our Subprocessor List is the canonical source of who they are and how we notify you of changes.
Your data, your control
You own your content. You can export your organization's data at any time, and deleting your organization permanently removes its records, files, and search index entries. We do not sell your data, and we do not use your content to train shared or foundation AI models.
United States data residency
Your content is stored and processed in the United States. We do not promise regional storage outside the US at this time.
Authentication & access
Accounts use email-and-password sign-in with optional time-based one-time-password (TOTP) two-factor authentication. Sessions are validated server-side on every request, and access within your organization is governed by roles.
Bot protection
Sign-up and contact forms are protected against automated abuse with Cloudflare Turnstile, a privacy-respecting challenge that does not rely on cross-site tracking.
Responsible disclosure
If you have identified a potential vulnerability or have a security question, contact us at support@libertaslink.com and we will respond promptly. We appreciate good-faith reports and will work with you to resolve issues.
Compliance posture
We handle data in line with GDPR-aligned principles, and a Data Processing Addendum is available. We do not currently hold our own SOC 2 report and do not claim one. Libertas Link is not intended for protected health information (PHI) or other regulated records requiring special handling (e.g., HIPAA) — please do not upload such data, as set out in our Acceptable Use Policy.
See also our Privacy Policy, Data Processing Addendum, Subprocessor List, and Acceptable Use Policy.