Security at Minerva

Security is part of the product design, not a layer added later. Minerva is built for operational systems that often carry sensitive data, high-impact workflows, and business-critical approvals.

SOC 2 Type IIGDPRCCPAISO 27001 (in progress)
Encryption everywhere

TLS in transit and AES-256 at rest protect data across the platform.

Role-based access

Granular permissions, field-level visibility, and approval workflows reduce risk.

Continuous monitoring

Operational alerts, auditability, and regular testing help teams respond quickly.

How we think about security

Data protection

Encryption, tenant-aware isolation, and retention controls help protect sensitive data across the platform.

Access design

Role-based visibility, field-level redaction, and approval workflows let teams delegate safely without exposing data or actions too broadly.

Response and review

Monitoring, logging, audits, and ongoing testing help teams detect issues quickly and respond responsibly.

Responsible disclosure

If you discover a vulnerability, contact security@birdlabs.ai. We take responsible disclosure seriously and will work with you to review and address valid findings.