Data Safety

Your data lives in
a vault.

Every user on TABULARUM operates inside a cryptographically isolated sandbox. Your documents, your conversations, your agent interactions — sealed and invisible to everyone else.

The Sandbox

One user. One sandbox.

When you join TABULARUM, a personal sandbox is created exclusively for you — a sealed environment where all your documents, conversations, and agent interactions live. No shared folders. No shared inboxes. No shared state.

Every sandbox is linked to your Tabularum Identity Number (TIN) — a cryptographically generated identifier that connects your email, profile, and data. Without it, your sandbox is invisible.

Architecture
How sandboxes work
When you log in, our system resolves your identity (email + TIN) and loads your personal sandbox. All five AI agents are scoped exclusively to your sandbox for the duration of your session. They cannot see, access, or reference any other user's sandbox. This is not a permission layer on top of shared storage — it is physical isolation at the database, storage, and application level.
How your request reaches your vault
Your request
Identity verification Verified
🔒
TIN-0291
User A
🔓
TIN-0847
You
🔒
TIN-1203
User C
Agent Isolation

Agents that forget everyone else.

When Gaio drafts your NDA, it sees only your deals and jurisdictions. When Lucio analyses your portfolio, it knows only your holdings. Each agent receives a scoped store that connects exclusively to your sandbox — no knowledge of any other user exists. When your session ends, the context is released. No residual state. No cross-contamination.

Inbound Email Security

Emails that route to your vault.

When you email an agent — say, gaio@tabularum.com — your message arrives via a cryptographically verified webhook, is matched to your identity, and routed directly into your personal sandbox. At no point does your email exist in a space accessible to any other user. Unknown senders are rejected before they enter any sandbox.