Skip to main content

Contour is purpose-built for system integrators. Learn more

Contour
Request a demo
Request a demo Free for consultants →

Security & Trust

Built for enterprise
trust requirements.

Contour is delivery infrastructure for SI firms working with sensitive client data. We take data security, privacy, and compliance seriously, and we make it easy to verify.

Contact

Security inquiries

To report a vulnerability, request our security documentation, or ask questions about our data handling practices, contact our security team directly. We respond to all security inquiries within one business day.

team@usecontour.ai
Architecture

How we handle your data

Your engagement data is stored in Contour's secure cloud infrastructure, isolated per customer. Each customer operates within a dedicated environment — data from one firm is never accessible to another.

Each customer operates within an isolated knowledge graph. Data from one engagement is never accessible to another firm or engagement context.

Compliance

Security posture

SOC 2 Type II
In progress. Available to prospective customers under NDA.
Data residency
Customer data stays in your chosen cloud region. No cross-region transfer.
Encryption
All data encrypted at rest (AES-256) and in transit (TLS 1.2+).
Access controls
Role-based access, audit logging, and least-privilege enforcement.
Disclosure

Responsible disclosure

If you discover a security vulnerability in Contour's systems or products, please report it to team@usecontour.ai. We ask that you give us reasonable time to investigate and remediate before public disclosure.

We do not pursue legal action against researchers who report vulnerabilities in good faith and follow responsible disclosure practices.

Legal

Policies

Privacy Policy Terms of Service Request security documentation