Sign in Request access

Security & trust

Built to be trusted with real work.

Agents that run shell, browse the web, and touch your SaaS need a security model that holds up. HQ isolates every conversation in its own machine, keeps your data in the region you choose, and writes an audit trail under every action.

Talk to us about security How the sandbox works

The pillars

Four things we never compromise.

Per-conversation isolation

Every conversation runs in its own microVM, isolated at the hardware level, not just a separate process on a shared kernel. Nothing crosses between workspaces, and a sandbox is torn down when its work is done.

EU or US residency

Two fully separated, isolated datacenters, one in the EU and one in the US, on hardware we run ourselves. Your data stays in the region you choose, with no dependency on a hyperscaler in another jurisdiction.

Audit-first by design

Every agent action carries an identity chain and lands in an immutable audit log: who asked, which agent acted, on whose authority, and what it touched. Built for the EU AI Act, not bolted on after.

Credentials under your control

Every integration credential is encrypted at rest and scoped to a single tool. Authorize only what you want, revoke at any time, and toggle integrations per workspace.

Isolation

Isolation that isn't a setting.

Most platforms isolate customers with software boundaries on shared infrastructure. HQ goes a layer deeper: the boundary is a separate machine per conversation.

  • A thread is a sandbox, not a shared seat. Each gets its own microVM, memory, and identity.
  • Hardware isolation via a lightweight microVM, the same primitive that isolates serverless tenants at scale.
  • Sandboxes snapshot and resume, so state persists for a conversation without persisting on shared infrastructure.
  • Egress is controlled and country-pinned, so an agent reaches only what you allow, from where you expect.

Compliance

Auditable, accountable, in your region.

EU AI Act

An identity chain, immutable audit log, and human oversight give the traceability and accountability the Act expects from higher-risk AI.

GDPR

Data residency, per-tool credential scoping, and edit, delete, and freeze controls support your data-protection obligations.

Data residency

Choose EU or US: two separated, isolated datacenters on dedicated hardware we operate end to end.

Certifications

Independently certified.

Audited and certified to ISO 27001, 14001, and 9001. Download every certificate and see our full control list and data residency in the Trust Center.

ISO 27001 Information security management
ISO 14001 Environmental management
ISO 9001 Quality management

Reviewing HQ for your security team?

Book a walkthrough and we will go through isolation, data residency, and audit in detail.

Request access