Security at GRID
How we protect your code, data, and organization. Enterprise-grade security built in.
Encryption
Data in transit is protected with TLS 1.3. Secrets and API keys are encrypted at rest using organization-specific keys. We never log or store your source code for AI inference beyond the context you explicitly send.
Secrets & Vault
Centralized secret management with per-workspace scoping. Keys are never written to disk in plaintext in the IDE. Optional vault integration for teams that need rotation and audit trails.
SSO & RBAC
SAML 2.0 and OIDC-based single sign-on for Enterprise. Role-based access control lets you define who can use agents, secrets, and projects. SCIM provisioning supported for automated user lifecycle.
Audit Logs
Full audit trail of who did what, when. Logins, secret access, agent runs, and configuration changes are recorded and exportable for compliance and forensics.
Self-Hosting & Data Residency
Run GRID in your own VPC or air-gapped environment. Your code and data never leave your infrastructure. Choose where your AI inference runs—cloud or on-prem.
Compliance
We align with common frameworks and are committed to SOC 2 and GDPR. Data processing agreements and security questionnaires available for Enterprise customers.
IP Allowlisting
Restrict dashboard and API access to specific IP ranges. Optional for Teams; configurable per environment for Enterprise. Combined with SSO and MFA for defense in depth.
Reporting Security Issues
If you believe you have found a security vulnerability, please report it to security@grideditor.com. We appreciate responsible disclosure and will respond promptly.