Vector / Security
Security & TrustBuilt for the team that has to sign off.
Observability touches your most sensitive data, the prompts and answers your product runs on. Here is exactly how we protect them, and how to keep them inside your own walls.
Three promises we put in writing.
Your data is never trained on
Prompts and completions are used only to render your traces. They are never used to train any model, ours or anyone else's.
You control retention
Set retention to the day. Redact fields at the SDK before anything leaves your process. Delete a project and its data goes with it.
You can keep it all in-house
Run Vector self-hosted in your own cloud. The full console, none of the data leaving your VPC. Same product, your perimeter.
Two ways to run it.
Managed, fastest to value
We run it, patch it, and keep it up. Most teams start here and never move.
- Hosted in AWS, multi-AZ
- Data residency in US or EU
- 99.9% uptime SLA on Enterprise
- Encrypted with per-tenant keys
Your cloud, your control
Deploy via Helm or Terraform into your own account. Nothing leaves your network.
- Runs in your VPC
- Bring your own KMS keys
- Air-gapped option available
- SSO, SCIM, and audit export
The everyday discipline.
Who touches what.
| Sub-processor | Purpose | Region |
|---|---|---|
| Amazon Web Services | Primary cloud hosting and storage | US / EU |
| Cloudflare | CDN, DDoS protection, WAF | Global edge |
| Stripe | Billing and payments | US |
| Postmark | Transactional email | US |
Self-hosted deployments use none of the hosting sub-processors above. The full current list is available in the DPA on request.