Security & Trust — Dixit Algorizmi

This page describes how Dixit Algorizmi protects data and runs securely across UBAG Protocol and BayFlow. We are an early-stage company; where a control is in progress or planned, we say so plainly. We do not claim certifications we do not hold. For the full questionnaire (CAIQ/SIG-lite), email contact@dixitalgorizmi.com.

Hosting & infrastructure

Layer	Provider	Region
Application (API + frontend)	Google Cloud Run	us-central1
Edge / DNS / TLS	Cloudflare	Global
Primary database	Neon (managed PostgreSQL)	AWS us-east-1
Object storage	Google Cloud Storage	us-central1
Secrets management	Doppler

Encryption

In transit: TLS 1.2+ everywhere (Cloudflare edge, Cloud Run, and Neon with sslmode=require).
At rest: AES-256 on the database and object storage (Google-managed keys).
Application-layer: sensitive credentials are additionally encrypted with PBKDF2-HMAC-SHA256 (600,000 iterations, per-record salt) deriving a Fernet key. Plaintext credentials are never stored.

Authentication & access control

Passwords hashed with bcrypt; never stored in reversible form.
Sessions use signed JWTs with bounded expiry.
UBAG zero-trust controls: per-agent allow-lists (ACLs), per-action value ceilings, dual-LLM semantic intent screening, session-aggregation limits, and a blind-agent credential vault that injects secrets server-side only on an explicit ALLOW never returned to the agent.
MFA enforced on critical admin systems (Google Cloud, GitHub, Neon, Doppler).

Logging & monitoring

Every gateway authorization decision is written to an immutable audit log with the agent, method, parameters, and verdict. Cloud Run captures structured runtime logs.

Secrets management

All secrets live in Doppler as the single source of truth and are injected at deploy time. No plaintext secrets are committed to source control. Credential rotation is supported via a documented one-command flow.

Vulnerability management

Dependabot scans Python, Node, and CI dependencies weekly and opens remediation PRs.
A weekly automated security scan (pip-audit + npm audit) archives results as audit evidence.
A vulnerability-disclosure contact is published at /.well-known/security.txt.

Change management

All code changes flow through GitHub with CI hard-gates: backend test suite, frontend unit tests, and end-to-end tests must pass before merge to the production branch.

Sub-processors

Google Cloud Platform, Cloudflare, Neon, Doppler, Resend (email), Stripe (payments), Telegram (alerts), and Groq / Google AI for LLM inference. Anthropic (Claude) is integrated but inactive unless explicitly enabled. Core sub-processors (GCP, Cloudflare, Neon, Stripe, Doppler) are themselves SOC 2 / ISO 27001 certified.

Compliance status

SOC 2: not yet certified. The control set above is implemented; a formal SOC 2 Type 1 audit will be initiated when enterprise customers require it. We complete security questionnaires on request.

Contact

Security questions or vulnerability reports: contact@dixitalgorizmi.com