Trust
Security
Last updated 9 July 2026
Gazelle reads your strategic context and watches your market, so we treat your data as sensitive by default. Here is how we protect it and how we harden the product itself.
Infrastructure
- Encryption in transit. All traffic to and from Gazelle is served over HTTPS/TLS.
- Encryption at rest. Workspace data is stored with managed cloud providers that encrypt data at rest.
- Managed platform. The application runs on Vercel’s infrastructure, with security patching and network protection handled at the platform level.
Authentication
- Sign-in is handled by Clerk. We never see or store your password.
- Sessions are scoped to your account, and every workspace request is checked against your identity.
Tenant isolation
Each organization’s data is partitioned and served only to authenticated members of that workspace. Analysis that is derived from public, org-neutral sources may be cached and shared to reduce cost, but your private context, briefs, and strategic position are kept to your workspace.
Hardening the scanner
Because Gazelle fetches and parses attacker-influenced content from the open web, the scanner is built defensively:
- SSRF protection. Outbound fetches validate every redirect hop, so a competitor page cannot redirect our scanner to an internal or metadata address.
- Link safety. Only
http(s)links from scanned sources are ever stored or rendered, closing offjavascript:anddata:vectors. - Content escaping. Scan-derived text is treated as untrusted and HTML-escaped everywhere it is displayed, including in email.
- Prompt-injection defense. Untrusted document text is fenced and labelled before it reaches the model, and inputs are bounded to prevent resource-exhaustion.
- Deterministic email. The Daily Brief email is rendered deterministically from structured data; no model-generated markup is ever emailed, which removes an entire class of injection and formatting failures.
- Authenticated sending with a content-integrity check before any message goes out.
- One-click unsubscribe (RFC 8058) in every Daily Brief. See Unsubscribe.
Access and operations
Access to production systems is limited to the people who need it. We spend against strict per-tenant and daily cost caps so that a runaway job or abusive input cannot escalate without visibility.
Your data, your control
You can export or permanently delete your workspace data from your account settings at any time. See our Privacy Policy for what we collect and how long we keep it.
Responsible disclosure
If you believe you have found a security vulnerability, please contact us with the details. We welcome good-faith research, will not pursue action against researchers who act responsibly and avoid privacy violations or service disruption, and will work with you to confirm and fix the issue.
