Security is our core commitment at Langdock, not an afterthought. We built robust processes to keep your data safe, your workspace private, and your information accurate.
Restrictive Access. Access to data at Langdock is strictly limited to essential personnel based on the principle of least privilege.
Layered Security Controls. We use a multi-layered defence strategy to ensure security, providing backup controls in case of a breach.
Consistent Security Controls. We apply consistent security controls across all sectors, ensuring equal protection against threats.
Iterative Implementation. We continuously refine our controls to adapt to the evolving security landscape and improve our posture.
We safeguard your data through secure processing and provide mechanisms for exercising GDPR rights.
Langdock is ISO 27001 certified, which ensures the integrity of customer data, minimises risks, and guarantees service continuity.
Langdock is SOC 2 Type 2 compliant. Proving our secure handling of user data and adhering to strict & vetted security processes.
Sebastian Schleicher
CTO, Blinkist
Data segregation. Data is separated by workspace and organisation using row-level access mechanisms.
Vulnerability scanning. We conduct these scans at critical phases to proactively detect and address any potential security flaws.
Real-time Access Control. Using source system access control to inherit permissions for every external integration into Langdock.
Data encryption. Data & chats at rest is encrypted with AES-256. Data in transit is encrypted with TLS 1.3 using AES-256.
Audit logs. All operations are monitored, recorded and can be analysed in great detail at any time.
Redaction of sensitive information. Information entered into the system can be scanned for PII at runtime.
No training data for LLMs. Langdock only uses models where the inputed data is not used for re-training of the models.
Custom data retention. Decide yourself how long we should retain your chat and company data.
Data Hallucination Resistance. We use RAG to provide relevant data and have mechanisms to prevent hallucinations.
Regulatory compliance
At Langdock, we are committed to maintaining the highest standards in our operations. As part of this promise, we consistently assess updates to both regulatory standards and emerging frameworks.
Privacy policy
View Langdock's Privacy Policy and list of sub-processors.
Data processing agreement
Request and view our Data Processing Agreement (DPA).
Does Langdock train LLMs with user data?
No. All models we support are stateless which means no data is stored within the model. All context that we provide to a model to generate a personalized result is passed to the model with every request. We currently don’t offer fine-tuning of models but you can already bring your own fine-tuned model!
How does Langdock handle permissions of third-party apps?
We use source system access control to inherit permissions for every external integration into Langdock. This makes sure that users can’t access documents they are not allowed to access.
How long does Langdock store user data?
Admins of a Langdock workspace can choose between different user data retention periods. At the end of the period, we automatically delete the user data. The currently available options are: After 7 days, After 30 days, After 90 days, No retention policy (forever). Our integrations inherit data retention from the source. If a document is deleted in eg. SharePoint, the operation will be propagated in Langdock with the next refresh.
How can Langdock be hosted?
We support several hosting options. Reach out to us and we will find an option that fits your business needs.
Does Langdock support SSO?
Yes. We support enterprise-level Single Sign-On (SSO) for all major identity providers like Azure Entra, Okta, and Okta.
What are the encryption mechanisms used by Langdock?
The data in the database (both vectors and application data) is encrypted at REST with AES-256 and in transit via TLS.
What makes Langdock GDPR-compliant?
We host all our services on GDPR-compliant servers in the EU, including third-party AI models. For instance, the GPT-4 model we use is hosted by Microsoft Azure in Stockholm, and Microsoft assures that a) the data is treated in compliance with the GDPR and b) OpenAI has no access to the data. We are also ISO 27001 and SOC2 Type 2 certified. We have an external DPO from heyData who ensures that Langdock continuously complies with all data security guidelines.
Why use Langdock over ChatGPT?
While Langdock and ChatGPT both offer the best GPT-4 models, Langdock uses GPT-4 hosted in the EU, supports models from all major LLM providers as well as open-source models. Langdock integrates with your company's data and provides the ability to build and deploy custom assistants and workflows. Langdock also has a built-in prompt library and allows you to collaborate as a team.
Does Langdock support GPT-4?
Yes. We support GPT-4 and GPT-4 Turbo. Via our platform GPT-4 is available hosted in the EU and the United States. GPT-4 Turbo is currently only available hosted in the United States but will soon also be available in the EU.
Does Langdock have an API?
Yes. We offer a unified API for accessing all models. Soon we will also offer an API for Assistants and Workflows. For the Model API, we are following a pay as you go model. Visit our API Pricing and API Documentation to learn more. Contact us to request an API key.
.jpg)
Talk to your data
.jpg)
The daily companion
.jpg)
Automate repetitive work
.jpg)
.jpg)
Connect all your tools & apps
.jpg)
Models hosted in the US and EU
.jpg)
One API for all features
Schedule a call or try out the platform at your own pace. Your first week of usage is on us.
Enterprise-grade security
Made in Germany
GDPR-compliant
Y Combinator
