Trust Center
How Layers handles data, who we share it with, and how to ask us questions.
This section is for security and privacy questions about the Layers platform itself: who processes your data, how, where, and under what contractual terms.
Commercial security terms (signed DPA, custom retention, security questionnaires) are negotiated at contract time. Email legal@layers.com to start that conversation.
In this section
- Sub-processors — every vendor that touches your data.
- Data flows — where PII enters, lives, and leaves.
- SDK PII inventory — what the SDK can collect.
- AI / LLM data handling — what goes to the model providers.
- DPA — contractual framework.
- DSAR — data-subject rights and how to exercise them.
- Security practices — encryption, access controls, disclosure.
- Certifications — current compliance scope.
- AUP — what you can and can't do on Layers.
- Vault & credentials — how we store third-party tokens.
- Incidents — incident response policy.
Contacts
- Security issues / vulnerability disclosure: security@layers.com.
- Privacy / data protection: dpo@layers.com.
- Legal, DPA, compliance paperwork: legal@layers.com.