Security Built for
Compliance
GenixBit Genius incorporates advanced security architecture, ensuring data sovereignty, key isolation, and granular user controls.
Role-Based Access Control (RBAC)
Define fine-grained scopes to protect sensitive information. Genius maps users to four strict roles: Admin (full observability and API keys config), Team (document upload and shared history), Client (playground access), and Guest.
Credential & Key Isolation
API keys for commercial LLMs (OpenAI, Anthropic, Gemini, DeepSeek) and search providers are stored securely inside AWS Secrets Manager. No credentials are hardcoded or exposed to the client interface.
In-Transit SSL/TLS Encryption
All web queries and WebSocket connection messages are encrypted in transit. Our Nginx proxy terminates SSL utilizing Let's Encrypt certificates, TLS 1.3 parameters, HSTS headers, and secure cipher suites.
Data Privacy & Sovereignty
Your uploaded document data remains private. Text extraction, vector splitting, and pgvector operations are run within our isolated container networks. No training data is sent to external LLMs.
Need custom security integrations?
Genius supports SSO integrations, VPC private endpoints, and local model deployments for secure, regulated industries.