Data at rest
AES-256 encryption protects databases, developer workstations, cloud storage (S3, Blob), and AI training datasets, keeping stored information unreadable without authorized keys.
We care deeply about protecting your data, your teams, and your operations. Every system, agent, and integration we deploy is designed with encryption, access control, and compliance at its core.
Customer data is stored and processed in Canadian data centers. Our practices align with Canadian privacy legislation, including PIPEDA and applicable provincial requirements, under oversight from Canadian authorities.
AES-256 encryption protects databases, developer workstations, cloud storage (S3, Blob), and AI training datasets, keeping stored information unreadable without authorized keys.
All data flows, API communications, and remote access are secured with TLS 1.3 or higher, preventing interception while information moves across networks.
AI models must process data in memory, which is often the weakest link. For highly sensitive workloads in healthcare and finance, we use Confidential Computing to shield data even during processing.
Production data is hosted in Canadian data centers. We do not move your data outside Canada without explicit agreement and a documented business need.
Access is role-based and logged. Only authorized Palentir personnel with a legitimate operational need can access customer environments, and all access is audited.
We encrypt data at rest and in transit by default. For regulated workloads, we apply Confidential Computing and strict data-handling policies so models process sensitive information with additional safeguards.
Yes. Our security and privacy practices are designed around Canadian requirements, including PIPEDA and relevant provincial privacy laws, with governance frameworks reviewed on an ongoing basis.
We do not sell customer data. Third-party subprocessors are vetted, contractually bound, and limited to what is required to deliver the service.