Enterprise-grade security for the AI that powers your business.

Here is why you're safe with Whirl

Certified and secured by:

Built by a team that has
run Cyber at scale

We learned what enterprise-grade security takes, and put it into Whirl's DNA from day one.

Mario Duarte
Whirl AI CISO

Formerly CISO
At Snowflake

“Trust in technology isn’t built on perfection, but on the craft of the people and systems dedicated to protecting threats before they become a problem.”

Mario Duarte
Whirl AI CISO

Formerly CISO
At Snowflake

“Trust in technology isn’t built on perfection, but on the craft of the people and systems dedicated to protecting threats before they become a problem.”

Jacob Salassi
Lead Engineer

+

Formerly
Director of Production Security at Snowflake

MichelE Freschi
Security engineer

+

Formerly
Director of the Red and Blue team at Snowflake

Cameron Tekiyeh
Data engineer

+

Formerly
Sr. Manager of Data Security Analytics at Snowflake

Your environment
is yours alone

Whirl is not multi-tenant SaaS. Every customer is
individually contained, eliminating the possibility
of shared data.

Dedicated infrastructure

With fully isolated AWS environments for each customer, single-tenancy protects your data from the ground up.

Immutable infrastructure

Component updates require complete versioned and auditable, no interactive login to Production such as SSH.

Device-based access

Strongest possible authentication securely limits environment access to Whirl-managed devices, MFA with FIDO2 and more.

Built-and-run by one team

The same engineers who built the AI application designed and operate the AWS infrastructure that hosts your data.

The Whirl AI difference

Whirl agentic systems have
strict guardrails

We do not train
on your data

Your configuration and data are never used to train anything.

We do not run our
own models

Whirl uses established providers under controlled conditions. Your data is not feeding a proprietary model.

No data is shared between customers

Data isolation is consistent across the AI layer.

Compliance & certification

SOC 2 Type II

Audited annually against the AICPA Trust Services Criteria. Reports available on request.

Penetration testing

Tested by independent third parties. Findings tracked, remediated, and re-validated.

Trusted partners

We partner with the security
industry’s best

Staying secure at scale means not trying to
own every problem alone

“Whirl AI’s customers trust them with critical enterprise systems, and that trust has to hold at every layer of the stack. With Chainguard Containers, every image is rebuilt continuously from source, kept to a minimal attack surface, and maintained with zero known CVEs, empowering Whirl AI to deliver on that promise end to end.”

Matt Moore, CTO and Co-founder
Chainguard

“When an AI platform asks for access to the systems that run your business, identity can’t be an afterthought. Whirl AI built its architecture to secure that access without secrets from day one — Aembit is proud to provide that foundation.”

David Goldschlag, CEO
Aembit

FAQ

What your security and procurement teams
want to know

Q: Is our data ever shared with other customers?

A:  No. Every customer runs in a fully isolated AWS environment with no multi-tenancy. There is no shared infrastructure, so one customer's data has no path to reach another customer's data.

Q: Do you train models on our data?

A:  No. We never train models on your data or your configuration, and we do not run our own models. Whirl uses established model providers, and your data is not used to train anything.

Q: What certifications do you hold, and can we see the reports?

A:  We have SOC 2 Type II certification, we are penetration tested, and our current controls are published in our Trust Center we can share reports with your security team on request.

Q: How do you protect credentials and secrets?

A:  Access to our environment is limited to corporate devices with enclave-based authentication and FIDO2 MFA, and there is no SSH access. We use Aembit for non-human identity to protect the secrets and keys that connect to your systems, so credentials cannot be lifted from a device or leaked.

Q: Where does our data live?

A:  Your data lives in a dedicated, fully isolated AWS environment provisioned for your organization.

Q: Who do we contact for a security review?

A:  Reach out to our team to request a review and we will walk your team through Whirl’s security protocols.

Bring your security team.
We'll walk them through everything.

Certified and secured by: