Access Controls
- Email/password and Google OAuth single sign-on.
- Two-factor authentication (TOTP) with backup codes.
- Session management with IP and user agent tracking.
- CAPTCHA protection (Cloudflare Turnstile).
- Email verification for all accounts.
Enterprise-grade security from day one
PaperAI is built with security at its core. Multi-tenant data isolation, role-based access control, two-factor authentication, and a complete audit trail protect your most sensitive documents.
Data Boundaries
- Multi-tenant architecture with strict data isolation.
- All queries scoped to organization to prevent cross-tenant data access.
- Encrypted storage for sensitive data.
- Structured status lifecycle for review and approval decisions.
- During AI processing, document content is transmitted to the selected third-party model provider. PaperAI contracts with providers for API-only inference with no training on customer data.
Workflow Traceability
- Approval and rejection states with reasons and actor context.
- Complete, immutable version history for every document.
- Admin impersonation with audit logging.
- User banning (temporary or permanent) with reason tracking.
Storage & Delivery
- Original files in managed cloud object storage with signed URL access.
- Secure download patterns for originals and converted files.
- Data encrypted in transit and at rest.
Security signals
- Multi-tenant data isolation
- Organization-scoped document access
- Role-aware decisions with timestamps
- Version restoration for output governance
- SSO/SAML on Enterprise plans
- Audit logs on Enterprise plans
Need a deeper security walkthrough?
Tell us your review and compliance requirements and we'll map PaperAI controls to your workflow.
100 free credits — no credit card50% off first month with LAUNCH50Cancel anytime