Security

Built for the room that has to be sure.

Where your dossier lives, what your security team can inspect, and the two redlines we will never cross, written down and on the record.

No black boxes, at three levels

If you can't audit it, we don't ship it.

01 / Claim

Every claim footnoted.

Every claim in the report carries an inline footnote chip that opens its source: the persona, the post, the graph node, the document in your dossier. No assertion stands without an attribution surface.

resolves to: persona · post · node · doc

02 / Run

Every run diagnosed.

Every report ends with a Diagnostics section: narrative stability, stakeholder balance, evidence depth, the strength of minority views, convergence, persona diversity. The properties of the rehearsal are exposed alongside the conclusions, so your team can judge how much to trust the result.

six diagnostic dimensions, per run

03 / Engine

Every line inspectable.

On-premise deployments include full source access for your security review. The engine that writes the footnotes is itself auditable: by your team, on your hardware, behind your perimeter.

on-premise: full source · air-gap-capable

Where your data lives

By engagement mode.

The shape of the engagement determines where the dossier lives, who can read it, and how it leaves at the end.

	Advisory	Cloud	On-premise
Where the dossier sits	Our EU tenant for the engagement	Your isolated EU tenant	Your network, your hardware
Inference location	EU-region (Vertex AI, Frankfurt)	EU-region (Vertex AI, Frankfurt)	Local-only, llama.cpp on your hardware
Outbound network calls	To EU inference endpoints only	To EU inference endpoints only	None. Air-gap-capable.
Multi-tenant isolation	Per-engagement workspace	Per-tenant, no cross-customer access	Single tenant, your network
Dossier retention	Deleted at engagement end + 90 days	Contract term: deletion on request, hard delete on termination	Your retention policy applies
Telemetry from your tenant	Operational metrics only, no dossier content	Operational metrics only: no dossier content	None, by design
Audit log	Per-run, retained with engagement record	Per-run, retained for the contract term	Local, yours to retain or rotate
Source-code review	Walkthroughs on request	Walkthroughs on request	Full read-only access

Compliance posture

Where we stand today.

Jurisdiction: Berlin, Germany. Creative Human GmbH. EU-resident operations. GDPR governs all dossier handling.
Data residency: EU only for Cloud. Your network for On-premise. Advisory engagements processed in our EU tenant.
Encryption: In transit: TLS 1.3. At rest: AES-256, customer-scoped keys per Cloud tenant.
Subprocessors: Vertex AI (Google Cloud, Frankfurt) for Cloud and Advisory inference. None for On-premise. Full subprocessor list furnished with the DPA on request.
Access: Role-based, per-engagement. SSO supported via SAML 2.0 and OIDC. Engineering access to tenant data is gated by named-role approval and logged.
Incident response: Notification within 72 h of confirmed incident, per GDPR Art. 33. Written incident response plan furnished on request.
Audits: SOC 2 Type II in progress for Cloud. ISO 27001 on the roadmap. On-premise: your auditors run their review against the source you hold.
Public accuracy claims: None. Glasshouse does not run a public ledger comparing predictions against future real-world outcomes for client scenarios. The internal Evals loop is private and exists for product tuning.

Founder-level redlines

Two things we will not do, regardless of the contract.

Encoded in our company statutes. Not negotiable for any revenue. Refused at the contract stage if the use case crosses the line.

Redline 01

Never for electoral politics.

Glasshouse will never be sold to or built for political parties, candidates, campaigns, campaign strategists, PACs, or election-focused consultancies. Non-elected operational government: ministry directors, civil service, regulators, parliamentary research, is the approved counterpart. Governing is not electing; the line is drawn at helping anyone get elected.

statutory · permanent · no exceptions

Redline 02

Never for military, defence, intelligence, or human harm.

No sales to militaries, defence ministries, defence contractors, intelligence agencies, or dual-use intermediaries. No use cases whose success metric involves harming people. The same statutory standing as the electoral redline; the same lack of exceptions.

statutory · permanent · no exceptions

Want a security review before you talk to us? Send us your questionnaire.

Send the questionnaire See engagement modes