Security & Data Handling
A high-level overview of GuardRail’s security posture and how we handle customer and vendor data.
Effective date: November 1, 2025
Purpose
This document gives customers a high-level overview of GuardRail’s security posture and data handling approach.
Security Controls
GuardRail may implement controls such as:
- encrypted connections,
- role-based access,
- password hashing,
- environment separation,
- least privilege administration,
- monitoring and logging,
- backup and recovery processes,
- vendor and infrastructure management.
Customer Responsibilities
Customers remain responsible for:
- setting appropriate user roles,
- protecting credentials,
- reviewing vendor-provided information,
- deciding what documents to upload,
- managing legal and governance obligations beyond the Services.
Shared Responsibility
Security and oversight are a shared responsibility between GuardRail and customers.