Local encryption
Desktop workspaces use SQLCipher with keys stored in the OS keychain. Ciphertext is bound to table and field context so tampering is detectable on decrypt.
Agent approvals
Agents propose changes; durable writes require explicit human approval. Provider calls and exports are audited — not silently rolled back by commit history alone.
Cloud & team
Hosted editions use encrypted transport, scoped API credentials, and role-based access for shared tables. Contact us for a security questionnaire or DPA review.
Report a issue
Responsible disclosure: [email protected].
