Brew’s approach to security, data protection, and compliance
Security Framework
Data Protection
Technical Security
Service Providers
Provider | Purpose | Security & Privacy Information |
---|---|---|
Amazon Web Services (AWS) | Cloud infrastructure hosting | AWS Security |
Cloudflare | CDN and DDoS protection | Cloudflare Security |
Vercel | Deployment and hosting platform | Vercel Security |
Upstash | Redis and Kafka provider | Upstash Security |
GitHub | Source code and CI/CD | GitHub Security |
Datadog | Monitoring and observability | Datadog Security |
Provider | Purpose | Security & Privacy Information |
---|---|---|
Amazon SES | Email delivery service | Amazon SES Security |
Provider | Purpose | Security & Privacy Information |
---|---|---|
OpenAI | AI models for content generation and analysis | OpenAI Security |
Anthropic | AI models for content generation and analysis | Anthropic Trust & Safety |
Groq | Ultra-fast processing of open-source AI models | Groq Security |
Cohere | Enterprise-grade LLMs | Cohere Terms of Use |
HuggingFace | ML model hosting | HuggingFace Terms of Service |
X.AI | AI assistants and agents | X.AI Legal |
AWS SageMaker | Custom ML models | AWS SageMaker Security |
Flux | AI image generation | Flux Security & IP Protection |
Midjourney | AI image generation | Midjourney Privacy |
Recraft | AI image creation and editing | Recraft Security & Privacy |
Provider | Purpose | Security & Privacy Information |
---|---|---|
Firecrawl | Web scraping and data extraction | Firecrawl Privacy Policy |
Unstructured | Data ETL for AI | Unstructured Security |
Provider | Purpose | Security & Privacy Information |
---|---|---|
Stripe | Processes customer credit cards and payments | Stripe Privacy |
Provider | Purpose | Security & Privacy Information |
---|---|---|
Google Workspace | Email, calendar, and document collaboration | Google Workspace Security |
Slack | Team communication and collaboration | Slack Security |
Vercel v0 | Design and prototyping | Vercel Security |
Figma | Design and prototyping | Figma Security |
Acceptable Use Policy
Brew is working towards SOC 2 Type II certification, which will validate our controls around security, availability, processing integrity, confidentiality, and privacy.
Current Status:
If SOC 2 compliance is critical for your organization, we can:
How does sending emails through Brew affect my domain reputation?
How does Brew protect my customer data?
Can I get a copy of your security documentation?
Do you have a SOC 2 report available?
How do you handle data subject rights under GDPR?
How does Brew help with email accessibility?
How do you handle security incidents?
Can I conduct my own security assessment of Brew?