top of page

Source-first and secure AI for the workplace

Keeping our clients' data secure is Knode.ai’s top priority. Knode was built from the ground up by the same team that created much of the data infrastructure for the US 911 system in partnership with Apple and Google.

aicpa-soc-logo.png
GDPR Compliance Badge

Compliance Certifications

SOC 2 Type 2 Compliant

Security and trust are integral at Knode.ai. We are certified for Service Organization Controls (SOC 2) Trust Services Principles, focused on security. Our continued SOC 2 Type 2 compliance ensures our organizational and technology controls are independently audited annually.

GDPR Compliant

Customers’ personal information is maintained and secured in accordance with the EU's General Data Protection Regulation (GDPR). We are in process achieving GDPR compliance confirmation.

Please see our Privacy Policy for more details.

Secure Data Storage

All data is stored in enterprise databases/caches in a production GCP environment. Data is encrypted at rest with FIPS 140-2 validated crypto module utilizing AES 256 bit encryption. All data in transit is encrypted using TLS 1.2+. 

Tenancy Options

Knode defaults to a multi-tenancy application (similar to slack, google drive, and many others) for cost/monitoring reasons. At additional cost, Knode.ai also offers a Data Single Tenancy Option, which enables customer data to be stored in a separate GCP project. In this instance, you control the cloud account and therefore are responsible for maintaining the resources it contains along with access permissions (e.g. to the Knode application layer).

Data Indexing Controls

Administrators at your company control what data Knode can access or indexes. Access controls are specific to each integration. Existing user permissions are enforced for data indexing, meaning that, for example, users of Google Drive will only be able to search files and folders that they have permission to access. In addition, Administrators can choose to exclude files and folders completely.

Data Retention

Knode’s data retention policy aims to mirror source retention policy exactly. Ingested and indexed customer data is stored in a dedicated partitioned enterprise data store and kept fully synchronized with the application sources thus mirroring customer changes such as access permissions updates, deletions, and modifications. For example, if a document is deleted from the customer system, the document and its index representation is deleted from Knode.

 

Separate from application sources, data can be specifically excluded at any time. For example, if a specific employee is no longer with the customer organization or for any reason, organization administrators can delete users, which will trigger deletion of all user-specific data and metadata. Likewise organization administrators can also enable or delete integrations at any time, which will remove the application-specific data for all users. Finally, if an organization is removed from Knode, all organization data and any related metadata is also completely removed.

Access and Permissions

Authenticated Access

All Knode access requires authentication via Slack.

 

Administrators can enroll specific users or enable your entire organization.

Strict Permissions Enforcement

Knode only shows users information they already have permission to access in source applications.  If any permissions change, Knode’s results reflect those changes.

Search Index in Sync with Applications

Content, permissions, and metadata are continuously synchronized with your source applications. Existing GDPR, CCPA, and data retention processes you have should not be impacted by Knode.

Application Security

All Knode.ai SaaS communications are encrypted over TLS 1.2, which cannot be viewed by a third party. This is the same level of encryption used by banks and financial institutions. All customer data on Knode.ai is encrypted at rest using AES-256 encryption.

 

Knode.ai actively monitors ongoing security, performance, and availability 24/7/365. We run automated security testing on an ongoing basis. We also contract with a third party for penetration testing.

 

Knode.ai maintains ongoing PCI Compliance, abiding by stringent industry standards for storing, processing and transmitting credit card information online.

Knode Screenshot

Infrastructure Security

Knode.ai’s infrastructure is hosted in a fully redundant, secured environment, with access restricted to operations support staff at time of incident only. This allows us to leverage complete data and access segregation, firewall protection, and other security features that ensure the absolute minimum level of access to your data and our production infrastructure.

End-to-End Security

Knode.ai is hosted entirely on Google Cloud Platform (GCP), leveraging its end-to-end security and privacy features. Our team takes additional proactive measures such as continuous monitoring, auditing, pen test, and more, to ensure a secure infrastructure environment. For additional, more specific details regarding GCP’s security, please refer to Security, Privacy, and Cloud Compliance | Google Cloud.

Privacy

We are members of the Privacy Shield framework. For more information on Knode.ai's treatment of data, please see our Privacy Policy and Security Policy.

Data Center Security

Knode.ai customer data is hosted by Google Cloud Platform (GCP), which is certified SOC 2 Type 2. GCP maintains a list of reports, certifications, and third party assessments to ensure complete and ongoing state-of-the-art data center security.

 

GCP infrastructure is housed in Google-controlled data centers throughout the world, and the data centers themselves are secured with a variety of physical controls to prevent unauthorized access. More information on GCP data centers and their security controls can be found in Cloud Compliance & Regulations Resources.

Frequently Asked Questions:
Security and Compliance

  • Why should I use Knode?
    Here are reasons you should use Knode: You want a platform that pulls all your knowledge sources into one one place seamlessly You want the benefits of big-company Knowledge Management to drive speed that works on your existing tech stack (doesn’t require a new ECMS) You want an AI assistant that is scrupulous about data security You want to be able to build custom company bots in minutes You want to get the most from AI without taxing your engineering team or hiring specialists You want to experience the value of AI and LLMs quickly - not embark on an expensive build that costs tens or hundreds of thousands of dollars and takes multiple months to deploy You want measurable productivity results in your AI implementation, not a guessing game You want a solution that fits in your workflow, not another AI platform
  • How does Knode work?
    Knode is an AI knowledge system designed to facilitate knowledge access, automate the work of knowledge maintenance, and enhance your speed to deliver. Knode connects to your company’s knowledge bases to make information easily accessible via natural language queries in Slack. Here’s a detailed breakdown of how Knode works: Integration with Knowledge Platforms: Knode integrates with various knowledge platforms such as Slack, Google Drive, Gmail, Google Calendar, Notion, and Confluence (coming soon), among others. During onboarding, administrators select which integrations to connect and configure access permissions. Indexing and Access Control: Knode indexes the connected knowledge bases, making the information searchable and usable for various tasks. Access controls are enforced based on existing user permissions in the source applications. Users can only search and access files and folders they have permission to view. Knowledge Search and Retrieval: Knode allows users to query all connected knowledge bases and the internet from one place. It provides accurate and source-referenced information, ensuring that responses are reliable and verifiable. Knowledge Bots and Automation: Knowledge owners can set up customizable bots that can be used in workflows with natural language prompts. Content Creation and Summarization: Users can generate new content such as summaries, emails, reports, and more by providing prompts to Knode’s writing assistant. Knode can summarize content from various sources, including documents, websites, and Slack messages. User Feedback and Continuous Knowledge Improvement: Knode captures ongoing feedback from users to improve the accuracy and usefulness of its responses. It reports on content gaps to help managers with documentation upkeep ensuring continued relevance and speed. By integrating seamlessly into your existing workflows and leveraging your company’s knowledge resources, Knode aims to optimize productivity, reduce burnout, and elevate performance across teams.
  • How do my employees access Knode?
    Knode is accessible through the Knode app in Slack. To begin, the Slack app must be added by the Slack Enterprise Administrator at your company in order to use Knode. Employees who are not the Administrators of their Slack organization will not be able to add the app to the organization and have to request the app is added from an administrator at this time. Once Knode is added to a Slack organization, employees can be added via the "Users" tab or via the organization's IdP. Employees who have been invited to Knode will be sent a message to accept our terms and conditions and log into the onboarding app to authorize their connected services. Note - if users are invited to the app but do not connect their services, they can still prompt Knode, but Knode will have the full context of their knowledge sources which is why we always recommend completely connecting sources for the best experience. Once knowledge sources are connected, access controls are specific to each integration. Existing user permissions are enforced for data indexing, meaning that, for example, users of Google Drive will only be able to search files and folders that they have permission to access. Please note, if you do not authorize all permissions, some features may not be available to you or may not appear as sources in your results.
  • What kind of questions can I ask Knode?
    You can ask Knode a variety of questions including around themes such as summarization, content creation, brainstorming, and fact retrieval. In addition, you team can create custom chat bots - Knode Knowledge Bots - trained on specific information that can be accessed 24/7 via the bot. To explore your use cases, we recommend taking a tour with our team.
  • What kind of information can Knode read?
    Knode has access only to the documents and channels you grant it. In terms of the types of files, Knode ingests .xlsx, .docx., .pptx, Google docs, Google sheets, Google slides. It can parse tables within Google Sheets and .xlsx as well as tables within documents. It will also index your Slack channels including direct messages, private channels, external channels, and public channels.. All of these resources combined provide a basis for your unique Knode Knowledge Graph.
  • What can’t Knode do?!
    Please note, we do not currently support: .txt, .json, .csv files type or image file or MIME types such as .jpg, .png, .svg, .heics, .img AI-assisted interpretation of image content Real-time internet search We do however explore custom integrations and workflows with our enterprise clients. If there is a use case you’d like to discuss specifically, please book a demo with our team. If there is a use case you’d like to discuss specifically, take a tour with our team.
  • Is there an option to host my own data?
    Yes! Knode defaults to a multi-tenancy application (similar to Slack, Google Drive, and many others) for cost/monitoring reasons. Knode.ai also offers a Data Single Tenancy Option, which enables customer data to be stored in a separate GCP project. In this instance, you control the cloud account and therefore are responsible for maintaining the resources it contains along with access permissions (e.g. to the Knode application layer). To learn more about our tenancy options, please contact sales@knode.ai.
  • Which knowledge platforms do you integrate with for company data?
    Currently, we integrate with Slack and Google Workspace. In total, we support: Slack Google Drive Gmail Google Calendar Notion Confluence (Coming soon) Hubspot (Coming soon) We’re always adding new integrations. If you have any questions regarding integrations, please contact us at sales@knode.ai.
  • Can I limit access to certain knowledge stores or folders?
    Yes. Knode only has access to knowledge stores for which you give it permission. An Enterprise Administrator for integrations at your company controls what data Knode can access or indexes. Access controls are specific to each integration. Existing user permissions are enforced for data indexing, meaning that, for example, users of Google Drive will only be able to search files and folders that they have permission to access. During onboarding, you will be able to select which integrations you want to connect to Knode. In our required integrations with Slack and Google Workspace, as an administrator you are able to select which of your Slack users will be able to use Knode and you will be able to select which Slack Channels and files and folders within Google Drive you would like to share with Knode. In addition, Knode Knowledge bots allow you to point to a specific Drive folder or upload a selection of documents to build your knowledge base.
  • What happens if I update my knowledge stores, access rights, or retained information?
    Knode’s data retention policy mirrors your source retention policy exactly. Ingested and indexed customer data is stored in a dedicated partitioned enterprise data store, and kept fully synchronized with the application sources, thus mirroring customer changes such as access permission updates, deletions, and modifications. For example, if a document is deleted from the customer system, the document and its index representation is deleted from Knode. Separate from application sources, data can be specifically excluded at any time. E.g. If a specific employee is no longer with the customer organization for any reason, organization administrators can delete users, which will trigger deletion of all user-specific data and metadata. Likewise organization administrators can also enable or delete Application integrations at any time and choose to exclude any files or folders from indexing, which will remove the application-specific data for all users. Finally, if an organization is removed from Knode, all organization data and any related metadata is also completely removed.
  • Can I limit who has access to the Knode app within my Slack organization?
    Yes, Knode Administrators at your company can enroll specific users or enable your entire organization. There is no requirement to use Knode or enable Knode for all of your Slack users.
  • How will you ensure that our data is only accessible to individuals who are both within our organization and have access to that data?
    All Knode access requires authentication via your enterprise’s identity provider, leveraging your existing SSO (Single Sign-On) setup. This ensures that only authorized personnel within your organization can access the data. In addition, Knode follows the zero trust security model and the principle of least privilege, ensuring that each user has the minimum level of access—or permissions—necessary to perform their tasks. Knode only shows users the information they already have permission to access in source applications. If a user can’t access a document in a source application, Knode does not consider that document’s content in any of its operations instigated by the user - this means, for example, a user cannot ask a question about a document they do not have access to. Access controls are managed by an Enterprise Administrator at your company, specific to each integration and Knode keeps data permissions continuously synchronized with your source applications, reflecting any changes in real-time. For more information about security and compliance, visit our Security page or contact security@knode.ai.
  • How do you validate the responses?
    Knode is adamant about our “source-first” principle. This means that we only show answers when we have an explicit source relevant to your prompt, and we document all the source material used to generate every response so that it is easily auditable and accessible. This is in contrast to most generative AI products which frequently suffer from hallucination or randomness. In addition, Knode captures ongoing feedback from users in order to better train Knode on which responses are successful.
  • How do you measure the correctness of your responses?
    We use a proprietary evaluation criteria to score the correctness of responses. In addition, Knode users can provide feedback on responses that help train Knode to deliver the most accurate response for the user’s intention.
  • How do I know I can trust the responses from Knode?
    Whenever you get a response from Knode, Knode will display all the relevant sources used to derive that answer. Users can provide feedback on the accuracy and usefulness of the response, as well as suggest different or additional documentation to re-derive the answer. In addition, every Knode.ai customer knowledge base goes through ongoing evaluation to test the validity of the responses Knode delivers against expected results. This evaluation begins during onboarding when the Knode team works directly with the Knode Administrators at your organization to ensure the results are as expected and meet the intention or use case of the question. As this continues, we finetune our evaluation and scoring, essentially creating a custom tuned AI for your company so that the longer you continue to use Knode and the more knowledge you share, the greater compounding effect you will experience - we call this your Knode Knowledge Graph. If for whatever reason, you do not trust a response or find it to be inaccurate, we ask that you and your teams provide feedback either using the in-app feedback mechanisms or by reporting any irregularities to our support team. This way we can best monitor and leverage your feedback for the continuous improvement of your Knode.ai instance.
  • How do you approach the problem of hallucinations in generative AI models?
    Addressing hallucinations in the responses in Knode.ai is a critical aspect of our product development to ensure trust and overall quality. Knode aims to eliminate hallucinations by following a strict “source-first” principle. This means that we only show answers when we have an explicit source, and we document all the source material used to generate every response so that it is easily auditable and accessible.
  • How secure is Knode to use?
    Very secure. Keeping our clients' data safe is Knode.ai’s top priority. Knode was built from the ground up by the same team that created much of the data infrastructure for the US 911 system in partnership with Apple and Google. This involved handling highly sensitive user healthcare and location data, and leveraged our team’s expertise in Data Security, Privacy, and Regulatory Compliance. We’ve taken a similar approach at Knode.ai by following best-in-class security principles, including the zero trust security model, strong authentication practices, and the principle of least privilege. All data is stored in enterprise databases/caches in a production GCP environment. Data is encrypted at rest with FIP 140-2 validated crypto module utilizing AES 256 bit encryption. All data in transit is encrypted using TLS 1.2+. Knode is Service Organization Controls (SOC 2) Type 2 compliant. Knode complies with EU's General Data Protection Regulation (GDPR). To contact us regarding our latest certification report, a vulnerability or other security concern, please email security@knode.ai.
  • How do I know I can trust Knode with my data?
    Knode’s infrastructure is hosted in a fully redundant, secured environment, with access restricted to operations support staff at time of incident only. This allows us to leverage complete data and access segregation, firewall protection, and other security features that ensure the absolute minimum level of access to your data and our production infrastructure. All Knode.ai SaaS communications are encrypted over TLS 1.2, which cannot be viewed by a third party. This is the same level of encryption used by banks and financial institutions. All customer data on Knode.ai is encrypted at rest using AES-256 encryption. Knode.ai actively monitors ongoing security, performance, and availability 24/7/365. We run automated security testing on an ongoing basis. We also contract with a third party for periodic penetration testing. Knode.ai maintains ongoing PCI Compliance, abiding by stringent industry standards for storing, processing and transmitting credit card information online. For more information about security and compliance, visit our Security page or contact security@knode.ai.
  • Will data provided by our company be used to train or fine-tune Large Language Models?
    Data from your company will never be used to train or fine-tune Large Language Models. However, Knode does use in-app feedback to train your company-specific Knode instance to make sure answers are accurate and useful.
  • How is Knode hosted and deployed?
    Knode.ai is hosted entirely on Google Cloud Platform (GCP), leveraging it’s end-to-end security and privacy features. Our team takes additional proactive measures such as continuous monitoring, auditing, pen testing, and more, to ensure a secure infrastructure environment. For additional, more specific details regarding GCP’s security, please refer to Security, Privacy, and Cloud Compliance | Google Cloud. Knode.ai customer data is hosted by Google Cloud Platform (GCP), which is certified SOC 2 Type 2. GCP maintains a list of reports, certifications, and third party assessments to ensure complete and ongoing state-of-the-art data center security.
  • Is Knode HIPAA compliant?
    Unfortunately, at this time Knode is not HIPAA compliant.
  • My knowledge base and Google Drive are a mess. Do I need to do any clean up in order to use Knode?
    No. Every company is unique. The beauty of Knode is that you can start using it without any additional work as Knode is able to pick up on patterns in your documentation or you can choose to exclude specific files or folders. That said, the better the documentation, the better Knode will perform. That’s part of the built-in value of Knode’s knowledge system and knowledge management flywheel. If you need any help, our team is on stand-by during onboarding to share knowledge management best practices.

Have additional questions about security or compliance?

bottom of page