Caisey Docs

docs/how-is-caisey-safe.md

How is Caisey safe?

Understand data handling, model usage, and how command execution stays controlled and reviewable.

You are wondering how it could possibly be safe to turn an AI agent loose on your clients' devices. We come from the MSP world, so it is exactly the question we would ask. Here is the honest answer: no one is turning anything loose.

Let's walk through the concerns data-conscious teams raise most often.

Data security and sovereignty

Every conversation with Caisey is handled with care. Cloudflare is our non-AI compute and storage partner, held to strong security standards. Data is encrypted with TLS 1.2+ in transit and AES-256 at rest.

We combine deterministic and non-deterministic sanitization to scrub sensitive details before they are rendered in a chat.

When you delete your data, Caisey schedules deletion after seven days. Once that purge runs, it is gone for good.

All data is transmitted, processed, and stored in the United States, and we never sell, trade, or exchange it in any way.

AI models

No, ChatGPT is not training on your clients' data.

We run open-weight models on a third-party American inference provider. We pay with dollars, not data.

We may leverage your data to improve the experience, but it is never sold, traded, or exchanged in any way.

How a Caisey action works

How does a Caisey action work? It helps to understand what Caisey is.

Caisey is a runtime on the endpoint with a set of tools. The primary one is the ability to run a PowerShell or CMD command, and every command runs the same gauntlet.

When Caisey wants to pull logs, flush DNS, run sfc /scannow, or run dism, it names the exact command and the reason it needs to run it.

If the command is not pre-approved by your policy, we run an independent analysis with a separate AI model given different context to defeat prompt injection. That review judges whether the command is dangerous on that platform and explains why.

We then render the command and that analysis in the UI so you can approve the action explicitly.

Human-in-the-loop control

Every action is either pre-approved by your policy or approved by you. There is no third path.

You stay in control.

If you have concerns or want to chat with our dev team for any reason, use the contact form on this page. We'd love to chat.