Saluca · Security & Trust
How we protect your data and your agents across Asphodel (hosted memory) and Tiresias-ZT (self-hosted zero-trust governance). Zero-trust and tamper-evidence are built into the products, not bolted on.

Security posture

Saluca builds governance and memory infrastructure for AI agents. Security is the product, so our controls are architectural: every governed request is authenticated, policy-checked, and written to a cryptographically signed audit — and with Tiresias-ZT self-hosted, your data never leaves your infrastructure. This page describes the controls in place today and where we are headed.

Choose your data-residency model: Asphodel is a hosted SaaS on hardened cloud infrastructure; Tiresias-ZT runs entirely inside your perimeter (you hold the keys, the audit, and the data). Both enforce the same zero-trust path.

Data protection & privacy

Encryption

TLS 1.2+ in transit everywhere (automatic HTTPS, HSTS). Data encrypted at rest on managed cloud storage.

Content minimization

Request bodies are never stored — the audit keeps a SHA-256 digest only. Sensitive paths and fields are redacted before any write.

Tenant isolation

Per-tenant registries, row-level scoping, and per-tenant backends. One tenant can never read another's memory or audit.

Retention & decay

Memory supports TTL, importance weighting, and temporal decay — data expires by policy rather than lingering indefinitely.

Access control & authentication

Auditability & tamper-evidence

Every governed request — grant and deny — appends to a hash-chained, per-instance SoulKey-signed audit trail. Any post-hoc edit breaks verification (aligned to OWASP ASI06). The trail is cryptographically attributable, not just append-only, and can be verified independently at any time (/admin/audit/verify). In HA, each node signs its own chain into a shared store for disaster recovery.

Threat detection & response

Injection screening

Deterministic prompt-injection screen (SoulGate) on the request path — blocks before forward.

Behavioral analytics

SoulWatch: Sigma rules + per-agent baselines flag anomalies and license-integrity tampering.

Quarantine

Risk-scored agents/tenants are auto-quarantined and denied at the PEP until cleared.

SIEM export

Ship every audit event + detection to Splunk / Elastic / Sentinel (CEF/syslog or webhook). You keep the signal.

Infrastructure & operations

ControlStatus
Centralized logging (structured security events → Cloud Logging)live
Uptime monitoring + alerting on the money pathlive
Encrypted off-host backups, 30-day retentionlive
Signed, pinned container images (GHCR) + CI test gateslive
Offline license verification (Ed25519) — no phone-home; air-gap capablelive
Software Bill of Materials (SBOM) published per releaseroadmap

Deployment models & data residency

Asphodel (hosted)Tiresias-ZT (self-hosted)
Where data livesSaluca-managed cloudyour infrastructure only
Who holds the keysSaluca (per-tenant isolation)you (per-instance SoulKey)
Audit trailSaluca-managed, signedyours, signed, never leaves
Air-gapsupported (offline licensing)

Compliance & roadmap

We design to recognized control frameworks and are maturing toward formal attestation. We describe status honestly — we do not claim certifications we do not hold.

FrameworkStatus
SOC 2 Type IIroadmap — our control posture is designed to the Trust Services Criteria; a formal third-party audit is on our roadmap (not yet in progress)
GDPR / CCPAData Processing Addendum + sub-processor list available; privacy by design (minimization, redaction, residency choice)
OWASP ASIASI06 (tamper-evident logging) enforced by the signed audit chain

Legal terms — Terms of Service, Privacy Policy, DPA, Acceptable Use, sub-processors — are published at legal.saluca.com.

Report a vulnerability

We welcome coordinated disclosure. Email security@saluca.com with steps to reproduce and impact. We acknowledge reports promptly, keep you updated through remediation, and credit reporters who wish to be named. Please do not test against other customers' data or degrade service.