ProductSecurityUse casesChangelog
Run an adversarial test
posture.kurral

Active assurance,
applied to ourselves.

Kurral sees your most sensitive prompts, tool calls, and model output. We treat them like the secrets they are. Below: what's shipped, what's in flight, and how to verify both.

Last reviewed · 2026-05-05·Document v1.0.1·security@kurral.com
01 / shipped

What's already in production.

Every claim below maps to code in our repository. Ask and we'll walk you through the implementation.

shippedrun.in.your.vpc

Run the proxy in your VPC.

Kurral ships as a containerized proxy you can run inside your own network. Only the findings and metadata you authorize ever leave. The image runs as a non-root user with healthchecks built in.

shippedretention.you.choose

Retention you choose.

Workspaces pick none, metadata, or full trace retention. Per-request headers can tighten retention but never loosen it. Default is metadata-only.

shippedprovider.keys.never.persisted

Provider keys never persisted.

Anthropic, OpenAI, and Google API keys are stripped from request bodies at the edge before anything reaches storage or logs.

shippedworkspace.scoped.reads

Workspace-scoped reads.

Every dashboard query is scoped to the authenticated workspace. No cross-workspace data access at any layer.

shippedsso.mfa.managed

SSO + MFA.

Login, MFA, and social SSO are fully managed. Enterprise SAML / OIDC is on the roadmap.

shippedno.trace.body.analytics

No third-party analytics on traces.

Trace contents never leave for analytics, session replay, or marketing tools. Product telemetry covers UI events only.

02 / deployment

Three places the proxy can run. You pick.

Most security testing tools force your traffic through their cloud. We don't — prompt traces stay where you decide they stay.

shipped

Hosted

Multi-tenant cloud, fully managed. Best for design partners running their first scan this week.

best for · fast onboarding
shipped

Self-hosted proxy

Container image runs in your VPC, next to the agent under test. Only signed findings and the metadata you opt into ever egress to Kurral.

best for · regulated data (PHI / PCI / MNPI)
in flight

Air-gapped SDK

Library mode. Scenario engine and verdict logic run in-process. auto_sync=False disables phone-home; we're making that the default for the air-gapped build.

best for · classified, on-prem, frozen
prompt traces stay where you decide they stay.
03 / principles

We stand by.

Policy commitments, written into our DPA and Terms. They're as binding as the code we ship.

  • no training on you.

    No customer prompt, completion, tool I/O, or finding is ever used to train, fine-tune, or evaluate a Kurral-owned model.

  • no cross-customer learning.

    We never reuse one customer's adversarial run to seed scenarios for another. Public scenarios are documented and versioned. Private scenarios stay tenant-scoped.

  • severity moves get published.

    When we change how severity is scored, we publish what moved and why.

  • disclosure-first.

    We disclose breaches with timelines. We don't deflect.

good security tools earn trust the same way good auditors do — with disclosure, not deflection.
04 / compliance

Live status.

Every certification below is verifiable. We don't claim what we don't hold. Email security@kurral.com for the underlying reports and timelines.

Standard
Status
Notes
SOC 2 Type II
roadmap
in scoping; auditor selection underway
ISO 27001
roadmap
2026 roadmap
ISO 42001 (AI management)
roadmap
2026 roadmap
GDPR alignment
in flight
in progress; DPA available on request
CCPA / CPRA alignment
in flight
in progress
HIPAA / BAA
roadmap
available with self-hosted proxy once SOC 2 lands
Data Processing Addendum
shipped
available — legal@kurral.com
05 / reach us

Found something? Tell us first.

We treat reports the way we expect customers to treat ours — acknowledged within 24 hours, fixed before disclosed.

security@kurral.com    (PGP key — coming Q2)
legal@kurral.com       (DPA / privacy)
arvind@kurral.com      (founder)
Talk to the founder
disclosure-first. always.