Security

Data privacy

Not Diamond was designed to maximize data privacy and developer agency. For our routing features, we operate client-side rather than as a proxy—all LLM requests go directly from your application to the model providers. If you are building an application with strict data privacy requirements, Not Diamond can also offer enhanced privacy protection with a Zero Data Retention policy or a local deployment.

Security

Not Diamond is currently is SOC-2 and ISO27001 compliant. Our Python SDK uses requests==2.31.0 and urllib3==2.2.1 which encrypts data through HTTPS with TLS 1.3 (with fallback to TLS 1.2 if necessary). Our database is encrypted using AES-256, and all access to the database is also encrypted in transit using TLS certificates.

VPC deployments

If you have other specific compliance requirements, we can deploy Not Diamond to your infrastructure. Schedule a call with us to discuss your needs and learn more about the development and integration support we offer.