How AscendFi protects operator data.

All operator data is logically isolated at the account level. Each operator account operates within a dedicated data partition. Cross-tenant data access is prohibited by system architecture — not only by policy.

Operator context data (decisions, signals, assumptions, workstreams) is used solely to provide the Kaelia service to that operator. This data is not shared across accounts, not used to improve foundation model weights, and not accessible to other customers or AscendFi employees under normal operating conditions.

All operator data at rest is encrypted using AES-256. Data in transit between client and server is encrypted using TLS 1.3 as the minimum protocol. Older TLS versions are not accepted.

Encryption keys are managed using industry-standard key management infrastructure. Keys are rotated on a scheduled basis and on-demand in response to security events.

Kaelia operates on a least-privilege access model. Engineering and operations staff do not have standing access to operator data. Data access for legitimate support or debugging purposes requires an audited escalation process with time-limited credentials.

All internal access to production systems is logged and subject to regular access review. Access grants are revoked immediately on role change or departure.

Multi-factor authentication is enforced for all operator accounts. Session tokens are short-lived and are rotated on each authentication event. Sessions can be remotely invalidated by the operator at any time from the account settings.

AscendFi does not store operator passwords in plaintext or in reversible format. Password hashing follows current industry best practice.

Kaelia is hosted on enterprise-grade cloud infrastructure located in the United States. Infrastructure is distributed across multiple availability zones to ensure service continuity in the event of a single-zone failure.

AscendFi does not operate physical servers. Infrastructure providers are selected based on security posture, geographic compliance, and operational reliability.

Operator data is retained for the duration of the active account. Following account closure, data is retained for 90 days to support potential restoration requests and then permanently deleted.

Operators may request earlier deletion of their data by contacting privacy@ascendfiai.com. Deletion requests are processed within 30 days. Operators wishing to retain their own data before closure may export it via the account settings prior to closing.

AscendFi maintains a documented incident response process. In the event of a security incident affecting operator data, AscendFi will notify affected operators within 72 hours of confirming the nature and scope of the incident.

Notifications include: what data was affected, the scope of access, actions taken to contain the incident, and recommended actions for affected operators.

Security vulnerabilities can be reported to security@ascendfiai.com. AscendFi commits to acknowledging all reports within 24 hours and to providing status updates throughout the investigation period.

We request that researchers provide reasonable disclosure time before public reporting and that they avoid accessing or modifying operator data during investigation. We do not pursue legal action against researchers acting in good faith.