Skip to content
Inferis
Log inSign up

Your data is your business.

Inferis is built for professionals who handle confidential documents every day. We take that responsibility seriously.

All systems operational

99.95%

GCP Uptime SLA

AES-256

Encryption at rest

TLS 1.3

Encryption in transit

<3s

Avg search response

0

Breaches to date

24/7

Infrastructure monitoring

Your files are never used to train AI models.

We use enterprise-grade AI APIs for answer generation. Under our provider's enterprise terms, data sent through the API is not used to train or improve their models. Your documents remain private.

We never train on your data

Your documents are used only to answer questions from your team. They are never shared with third parties, never included in AI training data, and never accessible to other users.

Regional data residency

Your data is stored in the region you choose at signup: Australia (Sydney) or the European Union (Frankfurt). Your documents, chats, and audit trail stay in that region and are never co-mingled across regions. See 'Where your data lives' below for the full breakdown.

Encryption everywhere

All documents are encrypted at rest using AES-256 and in transit using TLS 1.3. Firebase Authentication handles identity. Firestore security rules enforce row-level access control so users only see their own data.

Not a public AI tool

Unlike ChatGPT, Copilot, or public AI tools, Inferis is a private, isolated environment. When your team uploads a confidential contract, it stays within your firm's workspace. No one else can see it or search it.

Isolated per-firm architecture

Each firm operates in its own logical partition. Documents, projects, and conversations are scoped to the firm level with server-enforced access controls. Role-based permissions ensure only authorised team members can access sensitive files.

Minimal data collection

We collect only what's necessary to run the service: your name, email, and uploaded documents. We don't track browsing behaviour, sell data to advertisers, or build behavioural profiles.

Enterprise-grade infrastructure

Built on Google Cloud Platform. The following certifications are inherited from our infrastructure providers, not independently held by Inferis.

SOC 2 Type II

Inherited via Google Cloud

ISO 27001

Inherited via Google Cloud

ISO 27017

Cloud security controls

ISO 27018

Cloud privacy protection

IRAP PROTECTED

Government assessed

PCI DSS

Payment security (via Stripe)

How your data flows

1. Upload & Store

Documents encrypted with AES-256 and stored in the cloud region you chose. Files never leave that region's infrastructure.

2. Process & Index

Text extraction and vector embedding run server-side. Chunked, hashed, and indexed for retrieval, scoped to your firm.

3. Query & Respond

Questions are answered via RAG retrieval against your vault. Every response includes source citations. Queries and responses are logged for audit purposes.

Common questions

Is this safer than pasting documents into ChatGPT?

Yes. Public AI tools like ChatGPT may use your inputs to improve their models. Inferis uses enterprise-grade AI APIs under terms that explicitly prohibit data training. Your documents stay private.

Where is my data physically stored?

Your data is stored in the region you select at signup: Australia (Sydney) or the European Union (Frankfurt + Brussels). Documents, chats, and audit logs stay in that region. AI inference runs in-region for the EU (Belgium). For Australia, only your query text and relevant excerpts are processed via a secure endpoint in the US, and your documents themselves never leave Australia. See 'Where your data lives' for the full picture.

Can other firms or users see my documents?

No. Each firm's data is isolated using server-enforced security rules. Your documents, projects, and conversations are only visible to authenticated members of your firm.

What compliance certifications does Inferis have?

Inferis does not independently hold these certifications. However, our infrastructure inherits SOC 2 Type II, ISO 27001, ISO 27017, ISO 27018, and IRAP PROTECTED compliance from Google Cloud Platform. Payment processing is PCI DSS compliant via Stripe.

Where your data lives

Your region is detected automatically at signup, or you can choose it yourself. From then on, your documents, chats and audit logs stay in that region, set once and locked for the life of your firm.

Europe
Oceania
AES-256 at rest TLS 1.3 in transit Never used to train AI
Europe
Document storage
Frankfurt + Brusselseur3 multi-region
Compliance framework
GDPRePrivacyEU AI Act
Oceania
Document storage
Sydneyaustralia-southeast1
Compliance framework
Australian Privacy ActNDB schemeAPP 11

Region is set at firm creation and locked. If you need a region not listed here, talk to us. New regions take days to add.

Live uptime & status history

Last security review: May 2026 · Infrastructure: Google Cloud Platform · Payments: Stripe