Trust starts before the pilot.
This page describes the marketing website and the questions we resolve before any venue or employee data enters an early-access pilot.
Last updated 10 July 2026
Website boundary
The public website is isolated from the SANDR product workspace. It uses an allowlisted V2 route manifest, restrictive browser security headers, request-size and method limits, rate-limited lead intake, release health reporting, and automated checks for private-file exposure. V2 remains no-index staging until it passes promotion gates.
Before a pilot receives data
Each data-connected pilot must define the organisations involved, permitted data, purpose, access roles, retention, deletion/export path, subprocessors, incident contact, and any international transfer mechanism. The marketing form is not a channel for operational files, staff reports, proofs, credentials, or special-category personal data.
AI and model-provider transparency
SANDR will identify the model and infrastructure providers used for a pilot and document the settings and contractual controls that apply to customer data. We will not treat a broad website statement as a substitute for the pilot-specific data-processing agreement. Questions about model training, retention, and provider access should be resolved in writing before onboarding.
Access and least privilege
Website enquiries are delivered only to the people and providers needed to respond. Pilot access must be role-scoped and reviewed with the customer. Credentials and secrets must not be submitted through the public form.
Incident handling
Security-relevant errors are logged with a release identifier so the affected deployment can be contained or rolled back. A pilot agreement will define the incident contact and notification process appropriate to the data and service in scope.
Report a vulnerability
Email gm@sandr-ai.com with the subject “Security report”. Include the affected URL, a concise description, and safe reproduction steps. Do not access other people’s data, disrupt service, or publish sensitive detail before we have had a reasonable opportunity to investigate.