Amend was built security-first from day one โ every business's data is encrypted and cryptographically isolated, access is scoped to the person using it, and the AI only ever acts with your permission. Here's exactly how.
Sensitive data is sealed with AES-256-GCM before it ever touches disk. A stolen database file is meaningless without the key.
Isolation is enforced two ways at once: every query is scoped to your business, and one business's key can't decrypt another's data.
Owners, office managers, salespeople and field crew each see exactly what they should โ nothing more.
Mend, your AI assistant, works within the exact same permissions as the person using it โ and pauses for your approval before anything leaves the building.
Getting into an account is the front door โ so we reinforced it.
Encrypted, backed up automatically, and never sold.
Everything on this page is live in the product today, on every plan, including the free one. There's no "enterprise security" upsell โ protecting your business is the baseline.
Is my data encrypted?
Yes โ sensitive data is encrypted at rest with AES-256-GCM using a key derived uniquely for your business. The key is never stored in our code.
Can Amend staff read my business data?
Your data is encrypted and isolated to your business. We build tools to help you win work; we never sell your data or expose it to other businesses.
Can my salesperson see the company books through the AI?
No. Mend enforces the same role limits as the app โ company financials are limited to owners, admins and the office manager, and Mend says so plainly rather than revealing anything.
What happens if an employee leaves?
Changing their access or resetting a password takes effect immediately โ their existing sessions are revoked, not left valid for hours.
Do you back up my data?
Yes โ automated, encrypted backups run on a schedule, and you can export or delete your data whenever you want.
Security is continuously reviewed and improved. Found something? Email [email protected].