Skip to main content

Your Data Stays Yours

Rilo processes tasks within your organization’s isolated context. Your data is never shared with other organizations, never used to train models, and never retained beyond what’s needed to do the work and learn your preferences.

Credential Handling

When you connect a tool to Rilo, your credentials are submitted through a secure portal — not shared in Slack or email. Credentials are encrypted immediately on submission and stored in a way that Rilo’s team cannot read them in plaintext. Rilo uses your credentials only to perform the tasks you assign. It doesn’t store session state between tasks in a way that persists login sessions beyond task execution. We never ask for credentials via Slack or email. If you receive a message that appears to be Rilo requesting a password or API key through a chat channel, contact support@riloworks.com.

Organization Isolation

Each organization that uses Rilo is completely isolated from every other. This applies to:
  • Task history — your tasks and results are only visible within your organization
  • Memory — Rilo’s learned knowledge about your preferences and processes is per-organization
  • Browser sessions — when Rilo uses a browser to work in your tools, that session is fully sandboxed and never shared with or reused by another organization
  • Credentials — stored and accessed only within your organization’s context

What Rilo Logs

Rilo keeps structured records of task activity for your organization:
  • What tasks were run and when
  • Which tools were used
  • Whether a task completed, failed, or was cancelled
These records are partitioned to your organization. They’re available for your team’s audit and review purposes.

Browser Sessions

When Rilo operates a browser-based tool on your behalf, the session runs in an isolated, sandboxed environment. Sessions are not reused across tasks or across organizations. Rilo uses only the tools and accounts you’ve explicitly connected.

Compliance

StandardStatus
SOC 2 Type IIIn progress — audit preparation underway
GDPRArchitecture supports GDPR-required data handling and deletion
HIPAAAvailable as a deployment option on Enterprise plan
For security questionnaires, compliance documentation, or architecture review materials, email security@riloworks.com.