Operon Core AIOperonCore AI
Get Started
ProductHow It WorksSolutionsWhy GovernancePricingAbout
← Back to operoncoreai.com

operoncoreai.com / Security Statement

⚠ These documents are pending attorney review and are provided for transparency only. They do not constitute legal advice and are subject to change.

Security Statement

Last updated: June 10, 2026

Operon Core AI LLC takes platform security seriously. This statement describes the security measures implemented to protect Mission Control and client data. This statement is informational and does not create contractual obligations unless expressly incorporated into a signed agreement.

1. Infrastructure Security

  • Platform hosted on DigitalOcean infrastructure with industry-standard datacenter security
  • All traffic encrypted in transit via HTTPS/TLS
  • Cloudflare CDN and security layer for DDoS protection and SSL termination
  • Regular security patching and dependency updates

2. Tenant Isolation

  • Each client account operates in a separate, isolated runtime environment
  • Client data, credentials, approval history, and configuration stored in per-tenant directories
  • No cross-tenant data access permitted by the application architecture

3. Credential and Access Security

  • All connector credentials stored in isolated tenant environments
  • Credential access logged and auditable through Platform governance controls
  • OAuth tokens handled according to least-privilege principles

4. Audit and Governance Controls

  • All approval decisions, executions, and system events logged with timestamps
  • All AI-assisted actions require explicit human approval before execution by default
  • autoExecute defaults to false; requiresExplicitApproval enforced on all approval items

5. What We Do Not Certify

The Platform is not currently certified for HIPAA, FINRA, SOC 2 Type II, PCI-DSS, or ISO 27001 unless expressly agreed in writing for a specific deployment. Clients with regulated data requirements should contact us before processing regulated data.

6. Responsible Disclosure

If you discover a security vulnerability, please disclose it responsibly by emailing security@operoncoreai.com. We will acknowledge receipt within 3 business days and provide a status update within 10 business days.

7. Incident Response

In the event of a security incident affecting client data, we will notify affected clients within 72 hours of becoming aware, to the extent required by applicable law.

Contact: security@operoncoreai.com

© 2026 Operon Core AI LLC · All Rights Reserved · Not Legal Advice