Security & Trust
Doxia can be deployed using Chatbase as the assistant layer. Below is a plain-language overview of controls commonly used for deployments.
Core controls
- Encryption: data encrypted at rest and in transit
- Access control: roles and permissions for teams
- Domain allowlist: restrict where the assistant can be embedded
- Rate limiting: reduce abuse and automated scraping
Compliance & privacy
- SOC 2 Type II (per Chatbase announcements)
- GDPR posture (per Chatbase legal materials)
- Document-first deployments: answers grounded in approved sources
Deployment best practices
- Use only board/manager-approved documents
- Keep portal credentials out of the system (upload exports instead)
- Use disclaimers + escalation for sensitive questions
- Limit public access until the pilot is validated
Need an enterprise review?
We can provide a simple security summary and links to vendor trust documentation.