Security & Privacy

How Sarudo protects your data with dedicated infrastructure, encryption, approval gates, and strict privacy policies.

Last updated: April 14, 2026

securityprivacyencryptiondata protectioninfrastructureapproval

Dedicated Infrastructure

Every Sarudo client gets their own dedicated server infrastructure. Your AI employee runs on its own virtual private server with its own database, its own file storage, and its own API keys. There is no multi-tenant architecture — your data never touches another client's data. This is fundamentally different from most SaaS products where all customers share the same database. Your instance is completely isolated.

Your dedicated infrastructure means you get consistent performance regardless of how many other Sarudo clients exist. No shared resources, no noisy neighbors.

Data Ownership

You own all of your data, period. Everything your AI employee stores — knowledge entries, CRM records, documents, conversation history — belongs to you. Your data is never used to train AI models for other clients. If you ever decide to leave Sarudo, you can request a full export of all your data. We do not sell, share, or monetize your information in any way.

Encryption & Security Measures

All data is encrypted both in transit and at rest. Communication between your Telegram client and the Sarudo server uses TLS encryption. Database contents are encrypted on disk. API keys and credentials are stored in encrypted environment variables, never in plain text. Server access is restricted to key-based SSH authentication with no password login. Automated daily backups ensure your data is safe even in the event of hardware failure.

Approval Gates

Sarudo implements mandatory approval gates for any action that has real-world consequences. Before your AI employee sends an email, makes a phone call, processes a payment, or publishes a social media post, it will present the action for your review and ask for explicit approval. You can approve, deny, or request modifications. This ensures you maintain full control over all external communications and financial transactions.

Never disable approval gates for email, calls, or payments. These safeguards exist to prevent accidental actions and ensure you always have the final say.

Email approval in action

Your AI employee always asks before sending.

You say:

Send a proposal to the new client at tech@startup.io

Sarudo responds:

I've drafted the proposal email to tech@startup.io. Here's the preview: [shows full email with subject, body, and attachments]. This email includes your standard proposal template with the pricing we discussed. Reply /approve to send or /deny to cancel. You can also ask me to make changes before sending.

What Sarudo Never Does

Your AI employee will never send an email without your approval. It will never make a phone call without your confirmation. It will never process a payment without explicit authorization. It will never post to social media without your review. It will never share your data with third parties. It will never use your data to train models for other clients. These are hard rules built into the system, not just policies — they are enforced at the code level.

What is Sarudo?

An overview of Sarudo as an AI employee platform — what it is, what it isn't, and how it differs from chatbots and virtual assistants.

Approval Workflow

How the /approve and /deny commands work, and which actions require your explicit approval before execution.

Email Approval Flow

The draft → review → approve/edit → send workflow and the safety mechanisms that protect you.