Your Content. Your Control.

We handle sensitive content — brand guidelines, compliance documents, internal communications. Here's exactly how we protect your data.

How We Handle Your Data

Encryption in transit

All data transmitted between your browser and TeamBench is encrypted via HTTPS/TLS. No exceptions.

Encryption at rest

All stored data is encrypted at rest. API keys are encrypted using AES-256. Passwords are hashed with bcrypt.

Data storage

Your content, reviews, knowledge bases, and conversations are stored on secured infrastructure. Database backups are encrypted.

Data isolation

Every query is scoped to your organization. One organization cannot access another's data. Enforced at the database level.

Your Content Is Not Used to Train AI Models

When you submit content for review or chat, it's sent to the AI model provider for processing:

  • OpenAI, Anthropic, and Google all offer API terms that exclude customer data from model training
  • Your content is processed and returned — not stored by the AI provider for training
  • TeamBench stores your content and reviews in your workspace — AI providers do not retain it

If data residency matters, the BYOK option lets you use your own API agreements with these providers.

Role-Based Access. Project-Level Permissions.

Organization Roles

RoleWhat They Can Do
OwnerFull access — billing, settings, team management, delete organization
AdminManage users, API keys, reviewers, organization settings
MemberUse chat, submit reviews, access assigned projects and reviewers

Project Roles

RoleWhat They Can Do
OwnerFull project control, manage members, delete project
EditorCreate and edit content, manage reviewers within the project
ViewerView-only access to project content and reviews

Maximum Control: Use Your Own API Keys

  • Add your own API keys from OpenAI, Anthropic, and Google
  • Use your negotiated enterprise rates and terms
  • No credit consumption — you pay your provider directly
  • Your API agreement with the provider governs data handling
  • Available on all plans, including Free

Built With Compliance in Mind

GDPR Readiness

  • Data deletion on request
  • Data export for portability
  • Clear data processing documentation

Audit Trails

  • Usage logging per user
  • Transaction and payment history
  • Activity tracking across all features

Payment Security

  • All payments via Stripe
  • Webhook signature validation
  • No card data on our servers

What We Don't Do

We don't sell your data to third parties
We don't use your content to train AI models
We don't share your data between organizations
We don't store payment card details (Stripe handles all payment processing)
We don't have access to your BYOK API keys in plaintext (encrypted with AES-256)

Security Questions?

For security-specific questions, compliance documentation requests, or enterprise security reviews — we're happy to discuss.

security@teambench.ai

Contact Us