Secure in Every Aspect
When it comes to your data, security is about more than just firewalls. It starts with an independent ownership structure and extends to the highest security standards. Galilea delivers on all fronts—with clean technical implementation and a robust infrastructure.
Certifications
Security & Data Protection
Our Measures for Your Security
Data protection and security form the operational foundation of Galilea. Our security measures and infrastructure are the result of years of experience in developing AI applications—ensuring security at every stage of data processing.
Data & Communication Security
Data is encrypted with TLS 1.3 during transmission and AES-256 at rest. Strict database separation prevents unauthorized access, and no data is used for LLM training.
Security Policies & Compliance
Strict access controls via SSO and 2FA ensure secure authentication and compliance with industry standards.
Proaktive Sicherheit und Überwachung
Multi-layered, continuous checks and automated code scans detect and prevent vulnerabilities.
Datenzugriff nach dem Minimalprinzip
Administrators have no permanent access to your data—temporary access is granted only upon request and automatically revoked after use.
Founder-Owned, Not Investor-Driven
Galilea is a product of PLAN D — an independent, founder-led company with nearly 10 years of experience in AI development. No anonymous investors. No opaque structures. Just direct contact and personal accountability.
AI Ethics
Transparency & Responsibility
Galilea operates based on high ethical standards. At a minimum, this means ensuring that AI-generated results are accurate, ethically sound, and transparent.
Data Quality Check
Ensures only high-quality, complete, and reliable data is fed into the AI system.
AI Compliance Test
Ensures all AI recommendations adhere to regulations and flags any violations.
Continuous Monitoring
Constant tracking of AI performance and accuracy.
AI Model Catalog
Transparent listing of the strengths, weaknesses, and training data sources of LLMs.
Highest Security Standards
FAQ
Your Questions, Our Answers
Galilea is hosted in Germany at data centers that meet the highest international security standards. The hosting infrastructure complies with certifications such as SOC 1/ISAE 3402, SOC 2, SOC 3, FISMA, DIACAP, FedRAMP, PCI DSS Level 1, ISO 9001, ISO 27001, ISO 27017, and ISO 27018. Your data remains fully within the EU.
Your data is fully protected during both transmission and storage. TLS 1.3 encryption secures all data transfers, while AES-256 encryption ensures protection at rest. Additionally, strict database-level separation provides an extra layer of security.
Galilea processes provided documents and data, as well as content from chats and search queries. The specific data types depend on your use case. Additionally, Galilea records account and usage data from employees.
Galilea detects personal data in uploaded documents using AI, automatically marks it, and provides options for anonymization, pseudonymization, or redaction.
No, your data is never used for AI training. Your knowledge remains confidential, secure, and protected.
Galilea supports integration with any identity provider (IDP) via OpenID Connect, allowing multiple IDPs simultaneously. Additionally, manual user accounts can be managed directly in Galilea. Two-factor authentication (2FA) is available for enhanced security.
No, Galilea employees do not have default access to customer data. Access is technically restricted and only granted with explicit consent—for example, for support purposes. All access is logged.
Galilea prevents prompt injections through input sanitization and security filters. AI models can only access data within the user’s authorized context, ensuring unauthorized access is blocked.
