Security & Trust
TekFidelityIQ handles sensitive Wi-Fi credentials, multi-tenant customer data, and AI-generated network intelligence. Here's how we protect it.
Security Controls
These aren't aspirational controls — they're the actual deployed architecture, backed by database migrations, middleware guards, and role-enforcement code.
Your clients' data never touches each other.
SSID passwords and network credentials stay locked.
Every sensitive action is recorded and permanent.
AI surfaces findings. Humans approve actions.
On-site agents use zero-knowledge token design.
API and authentication endpoints are protected against abuse.
Enterprise customers can configure their own OpenAI or Azure OpenAI key in place of the platform default. BYO keys are encrypted at rest with AES-256-GCM and decrypted server-side only — they are never returned to the browser or logged. Managed by Platform Owners only; self-service is not available in this release.
TekFidelityIQ's RCA engine and predictive analytics run on real telemetry only — never on simulated or fabricated data. Every AI output carries a confidence level. Low-confidence findings are flagged and require approval before an engineer can act. There is no auto-execute path. Network changes require a human in the loop, always.
Compliance Readiness
We walk enterprise buyers and MSPs through our security architecture before any contract. No surprises, no boilerplate — just the actual controls.