Security Overview

Data Protection

ThinkFleet is built with security as a core requirement, not an afterthought.

Encryption

• In transit — All data encrypted via TLS
• At rest — All stored data encrypted using AES-256-GCM
• Credentials — API keys and tokens encrypted separately with per-tenant keys

Tenant Isolation

Each organization runs in isolated containers. There is no shared state between tenants:

• Separate container instances per agent
• Isolated file systems
• Independent session stores
• Separate credential vaults

No Data Selling

ThinkFleet never sells or shares your data. Your conversations, documents, and credentials are yours. You can request full deletion at any time.

Authentication

ThinkFleet supports multiple authentication methods:

• Email and password
• Magic link (passwordless)
• Social login (Google, GitHub, etc.)
• Passkeys (WebAuthn)
• Two-factor authentication (TOTP)
• SSO / SAML (Enterprise plan)

Audit Logging

All significant actions are logged:

• Agent operations (create, update, delete, start, stop)
• Credential access and modifications
• Document uploads and deletions
• Task changes
• Configuration updates
• Login events with IP tracking

Compliance

• Data retention policies configurable per organization
• Data export available on request
• Data deletion available on request
• GDPR-compatible data handling