Your data.
Your PLC files are your intellectual property. We treat them that way. This page explains exactly what happens to every byte you upload to PLCs.ai.
Data isolation
Every customer's data is logically isolated through tenant-scoped storage paths and namespace separation. Every org-scoped query and storage call is gated by organization membership — no data is shared across customers at the application layer.
Never used to train AI
Your PLC files, your code, your operational data, none of it is used to train any AI model, ours or anyone else's. Your IP stays yours.
Encryption
All data is encrypted at rest using AES-256 and in transit using TLS 1.2 or higher. This applies to every file you upload and every query you run, and extends to every sub-processor in our data path.
Authentication and access control
OAuth 2.0 authentication. MFA and 2FA with TOTP available on all plans. Enterprise customers get SSO via SAML 2.0 and OIDC.
Data retention and deletion
Your data is retained only for the duration of your active subscription. You can request deletion at any time by contacting security@plcs.ai. On contract termination, your projects are soft-deleted immediately and permanently purged within 90 days.
Enterprise compliance
Enterprise capabilities — audit log access, SOC 2 Type II (coming soon), private cloud / on-prem deployment, and custom data residency — are available on request as part of an Enterprise contract.
Question about security, deletion, or compliance?
Every email to security@plcs.ai is read by a human on our security team. We reply within one business day.