Your data belongs to you
We know your colony data is sensitive research information. We treat it with the same care you do. Here's exactly how we protect it.
Encryption
All data is encrypted with AES-256 at rest in our PostgreSQL database. All network traffic is encrypted with TLS 1.3 in transit. Authentication tokens use secure, HTTP-only cookies that cannot be accessed by client-side scripts.
Infrastructure
ConductColony runs on Vercel (frontend hosting) and Neon PostgreSQL (database). Both providers maintain SOC 2 Type II compliance. Infrastructure is hosted in US-East regions with automatic failover and redundancy built into the platform layer.
Backups
Nightly encrypted backups with 30-day retention. Neon PostgreSQL provides point-in-time recovery, meaning we can restore your data to any second within the retention window. Backups are stored in a separate availability zone from the primary database.
Access control
Role-based permissions (admin, manager, member) control who can create, edit, and delete records within each organization. Every action is recorded in the activity audit log with the user, timestamp, and change details. Authentication uses passwordless magic links — no passwords to steal or forget.
Data export
Full CSV export at any time, for any data table. No vendor lock-in. If you ever decide to leave ConductColony, you take all your data with you in a standard, portable format.
Data deletion
Request account deletion and all your data is permanently removed within 30 days. This includes all animals, cages, breeding records, genotypes, activity logs, and user accounts associated with your organization. We do not retain deleted data.
Multi-tenancy isolation
Strict organization-level data isolation. Every database query is scoped by organization ID. There is no cross-tenant data access — one lab cannot see another lab's colony data, even if both are on the same database instance.
What we don't do
Clear commitments about how we handle your data.
We don't sell your data
Your colony records, breeding data, and research information are yours. We do not sell, license, or monetize customer data in any form.
We don't use your data for AI training
Your colony data is never used to train machine learning models, improve AI systems, or develop new products. The AI features in our import wizard process your data transiently and do not retain it.
We don't share with third parties
Your data is not shared with advertisers, analytics companies, or any other third parties. The only external services that process your data are our infrastructure providers (Vercel, Neon) under strict data processing agreements.
Security questions?
If you have specific security or compliance questions, or need documentation for your institution's vendor review process, contact us at support@conductscience.com.
Try ConductColony — Your Data Is Safe
Free tier available. No credit card required. Export your data at any time.