Security
How we protect your data
Security isn't just a feature in Twine—it's fundamental to our mission of connecting knowledge across organizations.
SOC 2 Type II Certified
With GDPR and ISO compliance currently in the works.
End-to-end encryption
All data is encrypted at rest with AES 256 and in transit with TLS 1.2+.
No training on your data—ever
Your data is yours. We never use customer data to train AI models.
Enterprise-ready
Peace of mind at scale. Twine offers comprehensive identity and access management features that meet enterprise security requirements while maintaining a seamless user experience.
Single Sign-On (SSO)
Authenticate into Twine using your existing identity provider for streamlined, secure access.
SAML
Enterprise-grade authentication via major identity providers (Okta, OneLogin, Auth0, and more).
User provisioning via SCIM
Automatically manage users through SCIM integration with your identity provider.
Domain verification
Add an extra layer of security by verifying and claiming your company's domain.
Multi-factor authentication (MFA)
Strengthen security with MFA across all authentication methods.
Audit logs
Comprehensive tracking of workspace events over the last 12 months.
SEIM integration
Stream security events to your existing security information and event management system.
Login restrictions
Control and restrict access methods for enhanced security.
AI & data governance
Intelligence with integrity. Twine employs stringent controls around AI processing to ensure your data remains private, secure, and used solely for your benefit.
No training on your data—ever
We maintain a strict policy against using customer data to train or improve AI models.
Secure processing
All requests to AI providers are transmitted individually through SSL-encrypted channels, ensuring data security in transit.
Your data serves only you
All data and AI responses are strictly isolated to your workspace and never shared between customers or used for cross-customer training.
Compliant partners
Our AI sub-processors maintain SOC 2 Type II compliance, meeting rigorous security standards.
Safety-first approach
Every AI capability undergoes comprehensive security and legal reviews before implementation in Twine's services.
Zero retention policy
Our LLM providers maintain strict no-retention policies for both inputs and outputs, ensuring your data isn't stored beyond its immediate use.
Compliance
Industry-standard compliance to keep your data protected. Twine maintains rigorous security controls and undergoes regular third-party audits.
To access compliance reports, see our trust center ↗
SOC 2 Type II
Independently verified security controls and practices through comprehensive SOC 2 Type II certification.
ISO 27001
Our comprehensive information security management system certification is in the works.
GDPR
We’re working on full compliance with Europe's General Data Protection Regulation, ensuring maximum protection of user data rights.
More info
For peace of mind, additional security and privacy compliance documentation is available via request.