Framing Limits are explicit during the buying cycle
Enterprise security should not rely on vague promises. OneChain states what is available, what is on the roadmap and what requires a specific contract.
Certifications ISO 27001, SOC 2, CSA STAR and CRA are not certified yet. Practices are documented and certification is on the roadmap.
Optional AI AI features use OpenAI APIs under Standard Contractual Clauses, data minimization and a no-PII policy. They can be discussed or disabled for customers requiring strict residency.
Isolation Isolation is logical at application level through clientId, roles and GraphQL controls. OneChain does not provide dedicated per-customer LLM instances.
SIEM and exports Log exports to a customer SIEM are not standard. They are handled through a dedicated contractual agreement.