Security Is Not an Afterthought
Macneil AI Agents is architected with enterprise security at every layer — from data ingestion to agent execution to audit logging.
Security Architecture
Our multi-layered security architecture ensures that your data is protected at every stage of the AI agent lifecycle. From authentication and authorization to encryption and audit logging, we've built security into the DNA of the platform.
- End-to-end encryption for all data in transit and at rest
- Tenant isolation at the database and application layers
- Complete audit trail for every action and data access
User Layer
Authentication & MFA
Auth Layer
SSO, SAML, OAuth, MFA enforcement
Workspace Isolation
Tenant-level separation & RBAC
Agent Runtime
Sandboxed execution & rate limiting
Data Layer
Encrypted database, field-level encryption
Data Encryption
At Rest
- •AES-256 encryption for all stored data
- •Per-tenant encryption keys
- •Encrypted database fields for sensitive data
- •Encrypted backups with separate key management
In Transit
- •TLS 1.3 minimum for all connections
- •HSTS enforced with preload list
- •Certificate pinning for API clients
- •Perfect forward secrecy for all sessions
Key Management
- •Tenant-specific key rotation policies
- •HSM-backed key storage (Enterprise)
- •Automated key rotation schedules
- •Key access logging and monitoring
Access Management
Enterprise SSO
- •SAML 2.0 integration with Okta, Azure AD, Google Workspace
- •Just-in-time user provisioning
- •Automatic deprovisioning on role removal
Role-Based Access Control
- •Workspace-level role definitions
- •Agent-level permission scoping
- •Data source-level access controls
Multi-Factor Authentication
- •Required for all admin accounts
- •Recommended for all users
- •Support for TOTP and hardware keys
Session Management
- •Configurable session timeout policies
- •Forced re-authentication for sensitive operations
- •Session activity logging
Audit Logging
Every action in Macneil AI Agents is logged and auditable. Our tamper-evident audit logs provide complete visibility into who did what, when, and from where.
| Event Type | Actor | Timestamp | IP Address | Outcome |
|---|---|---|---|---|
| Agent Created | [email protected] | 2025-04-19 14:32:10 UTC | 192.168.1.100 | Success |
| Data Access | agent-worker-1 | 2025-04-19 14:35:42 UTC | 10.0.0.5 | Success |
| Config Changed | [email protected] | 2025-04-19 15:01:28 UTC | 203.0.113.42 | Success |
| Access Denied | [email protected] | 2025-04-19 15:15:03 UTC | 192.168.1.50 | Denied |
Log Retention
90+ days
Growth plans / 1+ year Enterprise
Export Format
JSON/CSV
Via API with authentication
Tamper Protection
Cryptographic
Hash chain verification
Data Residency
Macneil AI Agents currently hosts infrastructure in the US (N. Virginia and Oregon regions). Enterprise customers can request dedicated cloud deployments in specific regions to meet data residency requirements.
Data residency commitments and region-specific SLAs are available under custom agreements. Contact our sales team to discuss your requirements.
Vendor & Subprocessors
Subprocessor Vetting
All third-party vendors and subprocessors are carefully vetted for security, compliance, and data protection practices. We only partner with vendors that meet or exceed our security standards.
For a complete list of current subprocessors, data processing agreements, and vendor security questionnaires, please refer to our Data Processing Addendum.
Incident Response
Detection & Response
- •24-hour detection SLA for critical security events
- •72-hour notification for confirmed breaches
- •Dedicated security response team
Contact & Escalation
Report security incidents to our dedicated team:
We maintain a 24/7 security response capability for enterprise customers.
Secure Development
Code Security
- •SAST in CI/CD pipeline
- •DAST scans before release
- •Code review for all changes
Dependencies
- •Automated dependency scanning
- •Vulnerability alerts and patches
- •Software composition analysis
Testing & Audits
- •Annual penetration testing
- •Third-party security audits
- •Bug bounty program
Found a Security Issue?
We take security reports seriously. Please email our security team directly with details about the vulnerability.
Security Contact
We maintain a responsible disclosure program and promise to respond within 48 hours of receiving a report.