Trust Center
How Layers handles data, who we share it with, and how to ask us questions.
This section is for security and privacy questions about the Layers platform itself: who processes your data, how, where, and under what contractual terms.
Commercial security terms (signed DPA, custom retention, security questionnaires) are negotiated at contract time. Email legal@layers.com to start that conversation.
In this section
- Sub-processors - every vendor that touches your data.
- Data flows - where PII enters, lives, and leaves.
- SDK PII inventory - what the SDK can collect.
- AI / LLM data handling - what goes to the model providers.
- DPA - contractual framework.
- DSAR - data-subject rights and how to exercise them.
- Security practices - encryption, access controls, disclosure.
- Certifications - current compliance scope.
- AUP - what you can and can't do on Layers.
- Vault & credentials - how we store third-party tokens.
- Incidents - incident response policy.
Contacts
- Security issues / vulnerability disclosure: security@layers.com.
- Privacy / data protection: dpo@layers.com.
- Legal, DPA, compliance paperwork: legal@layers.com.