Security at Managable
How we keep the data your business runs on safe — and how we prove it.
Encryption
AES-256 at rest. TLS 1.3 in transit. Per-workspace key rotation. Bank credentials never stored — all connections via OAuth tokens revocable at any time.
InfrastructureData residency
EU customers: Frankfurt (eu-central-1). UK customers: Dublin. Gulf customers: Dubai (me-central-1). US customers: Virginia. No silent cross-border data transfers.
HostingAuth & SSO
Magic-link or password + TOTP MFA on all plans. SAML SSO and SCIM provisioning on Scale. Role-based permissions per workspace.
IdentityAudit log
Every workspace event — sign-in, file access, integration change, AI action — logged immutably for 12 months. Exportable to your SIEM on Scale.
ComplianceBackups
Continuous WAL backup, hourly snapshots, daily off-region replication. Recovery point objective: 15 minutes. Recovery time objective: 1 hour.
ResilienceAI safety
Aether runs on enterprise tiers of Anthropic and OpenAI. Your data is not used to train public models. Every action is logged, reversible, and shows exactly what changed.
AetherService-level agreement
Managable targets 99.9% monthly uptime. If we miss it, you get service credits — 10% off your next bill for every 1% below target, capped at 50%. Available on Growth and Scale plans. Full SLA in your billing dashboard.
Responsible disclosure
If you have found a security issue, please email [email protected] with reproduction steps. We respond within 24 hours and triage every confirmed report.
Status & transparency
Live system status at status.managable.net. Every incident gets a post-mortem within 5 business days, published publicly.