Security at RefreshBrief

RefreshBrief is built for enterprise IT teams that take security seriously. This page summarizes our operational approach. Detailed security documentation is available under NDA on request.

Infrastructure

The platform runs on Cloudflare's global edge network. All traffic is TLS-encrypted in transit. Application data is stored in encrypted-at-rest datastores within Cloudflare's compliance perimeter.

Authentication

SSO (SAML, OIDC) available on the Enterprise tier. Customer access is gated by role-based permissions inside each tenant.

AI processing

Upgrade narratives are generated using the Anthropic API. We do not retain prompts beyond the duration of generation, and we do not opt into training data sharing.

Disclosure

Report a vulnerability: security@refreshbrief.com.