Trust & Safety

Security &
Compliance

Architecture review: March 2026 · Infrastructure: Railway + Supabase + Cloudflare

This page documents Oyvoda's security architecture, compliance posture, and audit capabilities for operators conducting security reviews and external reviewers evaluating the platform.

Certification Status

✓ SSL/TLS All Connections

✓ AES-256 At Rest

✓ Company-Scoped Data Isolation

✓ Structural Prompt Injection Defense

✓ Governed Tool Execution

✓ Hallucination Guard (RAG + Confidence Threshold)

✓ Supabase SOC 2 Type II

✓ Railway SOC 2 Type II

✓ Cloudflare Enterprise DDoS

○ Oyvoda SOC 2 — In Progress (target Q4 2026)

○ GDPR DPA — Available on Request

Uptime Target

99.9%

Health Check

Every 15 seconds

Data Isolation

Per company_id

Injection Defense

Architectural

LLM Provider

Groq (zero retention)

Audit Export

Dashboard + API

Security Architecture

Oyvoda's security is structural, not rule-based. Most AI platforms defend against attacks by filtering content. Oyvoda defends by making certain attack vectors architecturally impossible.

🔒

Hard-Coded MCP Trust Registry

All 9 Model Context Protocol servers are registered at application startup from a static, code-defined list. No server can be added, removed, or modified at runtime — not by user input, not by AI inference, not by API call. This eliminates the entire class of prompt injection attacks that attempt to register malicious tools — by architectural constraint, not filtering.

🛡️

Sanitizer MCP Layer

Every guest message passes through sanitizer_mcp before reaching the LLM. It strips injection patterns, removes control characters, truncates to safe lengths, and validates encoding. Content that fails sanitization is logged and rejected — it never reaches inference.

⚖️

Governance MCP — Pre-Execution Validation

Every proposed AI action passes through governance_mcp before execution. Checks: action is in the permitted set, operator has enabled it, parameters are within bounds, action is scoped to the correct operator. Actions that fail validation are blocked and logged — the AI cannot act outside its authorized scope.

🧠

Hallucination Guard — Response Grounding Verification

Every AI response is compared against the retrieved source chunks using token-level Jaccard similarity. Responses that diverge significantly from source material are flagged or blocked before delivery. Number fabrication detection checks that specific values in responses (prices, codes, times) exist in the source context. Emergency-intent responses are held to stricter thresholds and automatically escalated if grounding fails.

🗃️

Company-Scoped Data Isolation

Every database query is scoped by company_id at the query level. There is no mechanism by which one operator's data is accessible in another operator's context. This is enforced at the data access layer — a bug in the application cannot cross company boundaries.

🔐

Credential Handling

PMS credentials are stored encrypted and never appear in logs, API responses, or error messages. Secrets are injected at runtime via environment variables — they are not stored in the codebase or version control.

🌐

Transport Security

All connections use TLS 1.2+. Cloudflare terminates TLS at the edge. Database connections use SSL with certificate verification. No unencrypted paths exist between any system components.

Audit Capabilities

Internal Operator Audit

From the operator dashboard, operators can access and export:

All guest conversations — timestamps, AI decision metadata, intent scores, confidence
Pre-booking draft history — original AI draft, operator edits, final sent version
Escalation log — trigger reason, assignee, resolution, time-to-resolve
Knowledge base change log — additions, edits, approvals with timestamps
Canary rollout history — which behaviors deployed, when, to which properties

Export formats: CSV and JSON. Date-range filtering supported. Access via the dashboard Audit tab or directly via the audit API.

External / Third-Party Audit

For formal external reviews, Oyvoda can provide:

Architecture documentation and data flow diagrams
SOC 2 Type II reports from Supabase and Railway (available now)
Oyvoda SOC 2 readiness assessment (target Q4 2026)
Data Processing Agreement (DPA) for GDPR-regulated operators
Penetration test results (planned Q3 2026)

Request via security@oyvoda.com.

Incident Response

Operators notified within 72 hours of confirmed breach affecting their data
Notification includes: nature of incident, data categories affected, remediation taken
Operators responsible for guest notification in accordance with applicable law
All incidents logged and post-mortem published internally within 14 days

Infrastructure

Hosting

Railway (SOC 2 Type II)

Database

Supabase (SOC 2 Type II)

CDN / DDoS

Cloudflare Enterprise

LLM Inference

Groq (zero retention)

Backups

Daily, encrypted, 7-day retention

Region

AWS us-east-1

Security Contact

Vulnerability reports, security documentation requests, compliance discussions:

security@oyvoda.com

Critical vulnerabilities: 24-hour response. Responsible disclosure policy — good-faith researchers will not face legal action.

Security &Compliance