We follow industry best practices and implement robust safeguards to protect your data and give you peace of mind.
Because Super is fully built and operated by Slite, Inc., it benefits from the same security principles, infrastructure, and compliance programs that protect all Slite products.
This page provides a high-level overview of how we keep your data safe. You’ll find links below to Slite’s full security and privacy documentation for more detailed information.
Super and its parent company, Slite, are SOC 2 Type II compliant.You can access the most recent SOC 2 report via our Trust Center.
GDPR Compliance
We follow the requirements of the General Data Protection Regulation (GDPR).Customer personal data is processed lawfully, stored securely, and not used for model training.
HIPAA Compliance (Enterprise tier)
Super follows the same HIPAA-aligned administrative, technical, and physical safeguards used at Slite. We provide HIPAA support for enterprise-tier customers, including the execution of a Business Associate Agreement (BAA). To inquire about HIPAA availability or request a BAA, please contact support@slite.com.
Data Hosting
EU-Based Hosting
Your data is stored on secure European servers.All LLM processing also takes place on EU-hosted models to ensure regulatory alignment.
Data Protection & Access Controls
Encryption
Your data is protected with:
AES-256 encryption at rest
TLS 1.2+ encryption in transit
Access Control
For most of the sources, Super supports ACLs (Access Control Lists) based on the user's email address, ensuring that:
users only access documents they’re authorized to see,
answers are generated exclusively from sources available to them.
Use of AI Models
Super processes documents using:
Anthropic Sonnet 3.7 (EU-hosted)
Google Gemini 2.5 (EU-hosted)
Only the documents needed to answer your request are sent to the selected model.
No Training on Your Data
Your content is never used to train or fine-tune AI models.Nothing is retained after processing your request.