Privacy and security

Built for private business documents.

BusinessVault AI is designed around a local-first model. Customer documents are uploaded into a private workspace, indexed for search, and answered from the documents the customer provides.

Local-first by default

Standard answers are generated using the private BusinessVault AI setup instead of sending documents to an outside AI service.

Encrypted document storage

Uploaded files are encrypted before being written to disk or NAS-backed storage. Stored files are meant to be opened through BusinessVault, not by browsing the storage folder directly. The encryption key must be protected and backed up separately.

Optional enhanced answers

Cloud-enhanced answers are optional and should only be enabled when a customer approves that use in writing.

Protected information

Customers should upload only approved business documents. Sensitive, regulated, or unrelated customer and employee records should not be uploaded unless the use case is approved and appropriate safeguards are in place.

Review before decisions

AI answers may be incomplete or incorrect. Users should check cited source documents before legal, financial, medical, HR, compliance, or customer-facing decisions.

Access controls

Each business has its own workspace, secure login, workspace admin/admin/member roles, and an activity log for important account and document events.

Backups and monitoring

The system supports scheduled backups, restore testing, and health monitoring for the database, search service, local AI, and backups.