How we protect customer data and operate the Sentinel AI platform. This page is a plain-English overview of our security program. Detailed audit reports and the security architecture document are shared with prospective enterprise customers under NDA.
Ops Singularity is an enterprise AIOps platform, and security is a foundational requirement of every design decision we make. Sentinel AI operates inside customer environments with privileged access to monitoring, ITSM, cloud, and security tooling. We treat the responsibility that comes with that access as central, not incidental.
Our security program is built on three principles: least-privilege access, complete auditability, and customer data minimisation. We collect only what is necessary to perform the work, store only what is necessary to learn and improve, and log every action so customers always know what Sentinel has done.
Our security program is aligned to the controls and practices defined by the following industry frameworks. Where formal certification is in progress, that status is disclosed honestly to prospective customers under NDA.
Current certification status, audit reports, and the security architecture document are shared with prospective enterprise customers under NDA. Contact our team to start that conversation.
Sentinel processes your telemetry, such as events, metrics, logs, and traces, to power investigation and decision-making. Sensitive fields can be excluded or redacted before logs are sent to a model, raw payloads are not retained, and no customer data is used to train shared models.
For customers with strict data residency requirements, we offer regional deployment options (US, EU, APAC) and a private cloud or on-premises deployment model where all processing stays inside customer infrastructure.
All customer data is encrypted both in transit and at rest:
Sentinel authenticates to customer systems using least-privilege service accounts scoped per integration. Supported mechanisms include:
Permission scopes are reviewed as part of the onboarding security review. Customers can revoke access at any time.
Every action Sentinel takes — every signal correlated, every MOP executed, every escalation made, every notification sent — is captured in an immutable audit log. The audit trail includes the agent, the action, the input state, the resulting state, and the human approver where required. Customers can export the full audit log via API at any time.
This is not a marketing feature. It is how trust in autonomous operations is built and verified, and it is how we expect to be held accountable.
We follow a defined vulnerability management process covering dependency scanning, container image scanning, and periodic third-party penetration testing. Critical findings are remediated under defined SLAs. Coordinated disclosure is welcome — report security issues to info@opssingularity.com.
We maintain an incident response plan that defines roles, severity classification, customer notification timelines, and post-incident review. Customers affected by a confirmed security incident will be notified in line with our contractual and regulatory obligations.
If you believe you have discovered a security vulnerability in Ops Singularity, Sentinel AI, or our website, please disclose it responsibly to info@opssingularity.com. We do not pursue legal action against good-faith security researchers who follow coordinated disclosure norms.
Have a security question or need our audit reports?
Email info@opssingularity.com. We respond to security inquiries from enterprise prospects and customers within one business day.
VWAVES Technologies Pvt. Ltd., Indore, Madhya Pradesh, India.