Skip to main content
DriftLess logoDriftLess

Security

How DriftLess protects your account, keys, and project data.

Your keys

  • You add your own API keys.
  • Keys are encrypted at rest.
  • We do not log or expose keys.
  • You pay model providers directly.

Login and access

  • Session-based login with time-limited cookies.
  • Optional Google and GitHub sign-in.
  • Passwords are hashed, never stored as plain text.

Data handling

  • Your project data is private to your account.
  • We protect files and run history with access checks.
  • Traffic is protected over HTTPS.

What we do not do

  • We do not sell your data.
  • We do not expose API keys.
  • We do not bill model usage through hidden markups.
Privacy PolicyLegal NoticeHome