Platform Infrastructure
& Data Security Overview
Last Updated: August 14, 2025
Here’s how Gutsy protects the privacy, integrity, and security of company information, using industry-standard tools and certified providers, to ensure that client data stays private, encrypted, and is never used to train AI models.
What Marketers & Agencies Need to Know
Your user and company data stays in Canada (structured data, history)
No part of your content trains outside AI models
All inputs are encrypted and access-controlled
Your files and AI chats are private
Infrastructure partners are SOC 2 and ISO-certified
Data Residency & Processing Flow
Persistent User Data: Stored in Canada Central (AWS) via Supabase, a secure, open-source platform with full encryption and access controls.
Application Logic: Executed through Vercel (Washington D.C.), with scoped permissions and isolated deployments.
AI & Search APIs (US-based, transient use only):
Anthropic Claude API – US data centers
Google Gemini API (2.5 Flash & 2.5 Pro) – US data centers
Open AI API (gpt-5) – US data centers
Perplexity API – US data centers
File Uploads: Stored in Vercel Blob Storage (Washington D.C.)
Certified Infrastructure Providers
Supabase (on AWS Canada Central)
Hosted in Canada Central region (PIPEDA-compliant). Benefits from AWS certifications: ISO 27001, ISO 27701, SOC 1, SOC 2, SOC 3, CSA STAR & built-in Postgres database with row-level security (RLS)
Vercel
SOC 2 Type II compliant, Per-deployment isolation, encrypted secrets, access-controlled environments
AI Technology Providers
1.Anthropic (Claude)
2.Google (Gemini)
3.Open AI (Chat GPT)
4.Perplexity
No training on API data.
SOC 2 Type II certified.
Data handling policies published and monitored.