NexusBridge AI LogoNexusBridge AI
Log inStart Free Trial
Security Overview

Your project data is safe

NexusBridge AI is built by engineers who handle sensitive offshore project data every day. Security is not an afterthought β€” it is built into every layer of the platform.

πŸ”’TLS 1.2+ enforced
🏒Full tenant isolation
🚫No source code stored
πŸ€–Private AI mode available

Security measures

A technical overview of how we protect your data at each layer.

Encryption in Transit & At Rest

  • βœ“All traffic encrypted via TLS 1.2+ (HTTPS enforced)
  • βœ“Cloudflare CDN provides additional DDoS protection and edge security
  • βœ“Database connections use encrypted channels
  • βœ“JWT tokens use HS256 with strong randomly-generated secrets

Tenant Data Isolation

  • βœ“Every workspace (Tenant) is fully isolated β€” no data is shared across organizations
  • βœ“All database queries are scoped by tenantId at the service layer
  • βœ“Row-level isolation enforced in PostgreSQL
  • βœ“API endpoints validate tenant ownership on every request

GitHub / Third-party Integrations

  • βœ“GitHub integration uses Personal Access Tokens (PAT), not OAuth scopes
  • βœ“We only read PR metadata and commit hashes β€” source code is never stored
  • βœ“Jira integration uses API tokens scoped to specific projects
  • βœ“All third-party credentials are stored encrypted, never in plain text

Access Control & Authentication

  • βœ“Role-based access control (RBAC): Admin, PM, BrSE, Dev, Client
  • βœ“JWT-based session management with 7-day expiry
  • βœ“System Admin portal protected by an additional layer of HTTP Basic Auth
  • βœ“Sensitive routes (admin, dashboard) blocked from search engine indexing via robots.txt

Infrastructure & Operations

  • βœ“Hosted on AWS EC2 in the ap-northeast region (Japan proximity)
  • βœ“PostgreSQL database runs with persistent Docker volumes
  • βœ“Automated schema migrations on every deployment (no manual DB access)
  • βœ“Docker containers run in isolated networks with no direct external DB exposure

AI & Data Usage

  • βœ“Meeting transcripts and project data are stored only in your workspace
  • βœ“We do NOT use your data to train AI models
  • βœ“OpenAI API calls use your workspace context only β€” no cross-tenant leakage
  • βœ“Private AI mode (Ollama) available for keeping all AI processing on-premise

Responsible Disclosure

We take security vulnerabilities seriously. If you discover a security issue, please report it directly to our team rather than disclosing it publicly. We commit to responding within 48 hours.

[email protected]