Skip to content
Tukun.ai A Semantic-first Data Agent
Sign in

Security Overview

Security is a shared responsibility between Tukun.ai and each customer workspace.

Customer responsibilities

Section titled “Customer responsibilities”
  • Use read-only credentials where possible.
  • Limit source access to approved schemas and datasets.
  • Invite only the users who need workspace access.
  • Remove users and credentials that are no longer needed.
  • Review generated analysis before using it for high-stakes decisions.

Credential handling

Section titled “Credential handling”

Use service accounts for production data connections. Avoid personal database credentials because they are harder to rotate, audit, and transfer when employees change roles.

Data minimization

Section titled “Data minimization”

Only connect data needed for analytics workflows. Do not connect sensitive datasets unless they are required and approved by the data owner.

Vulnerability reports

Section titled “Vulnerability reports”

Report security concerns to security@tukun.ai with enough detail to reproduce the issue. Do not include secrets or unnecessary personal data in reports.