Obsidian
Obsidian
Get Started

Security

Tempered by architecture

Your documents never touch shared infrastructure. Every layer of Obsidian is forged to enforce privacy — from the molten moment of upload to the final act of destruction.

Architecture

Molten channels

Source
Your Browser
E2E encrypted uploads
Orchestrator
Obsidian API
Metadata & routing only
Blind to document content
Your Vault
Dedicated GPU
All data forged here
Sealed crucible
No document data is stored on or passes through our servers

Foundation

Four walls of volcanic glass

Obsidian Containment

Each vault is forged on a dedicated GPU — sealed hardware with no shared resources. Your data runs in a single-tenant crucible, thermally isolated from every other process on the network.

Vitreous Encryption

AES-256 at rest. TLS 1.3 in transit. From the moment data leaves your browser to the instant it reaches your dedicated instance, every byte passes through layers of cryptographic obsidian. Nothing is visible in between.

Zero-Knowledge Forge

We orchestrate. We never witness. The Obsidian API handles metadata and routing only — vault status, billing, provisioning. Your document content is smelted exclusively on your GPU. We are blind by architecture.

Volcanic Isolation

No egress. No escape channels. Each vault instance operates in a sealed network with no outbound connections. Even a compromised model cannot exfiltrate — the walls are made of glass that nothing passes through.

Lifecycle

From ore to oblivion

Four stages. Each one seals the one before it.

01

MINE

Ingestion

Raw documents are encrypted in your browser and transmitted via TLS 1.3 directly to your dedicated GPU instance. Our servers never touch the payload — only the routing metadata passes through the orchestration layer.

02

SMELT

Smelting

All AI inference runs locally on your GPU. Documents are parsed, embedded into vector space, and analyzed entirely within your sealed instance. The model weights, your data, and every intermediate computation exist in one place alone.

03

FORGE

Containment

Documents exist only on your instance's ephemeral storage — volatile by nature, isolated by design. Nothing is persisted on Obsidian infrastructure. No backups. No replicas. No shadow copies.

04

SHATTER

Obliteration

When you destroy a vault, the GPU instance is terminated, storage is wiped at the block level, and all data is permanently erased. The glass shatters. Nothing remains to reconstruct.

Compliance

Forged to meet your requirements

Obsidian's volcanic-grade isolation is designed to support compliance requirements across healthcare, finance, legal, and government sectors.

HIPAA Compatible

Isolated architecture designed to meet HIPAA technical safeguards. BAA available on request.

GDPR Ready

Data residency controls. Right to deletion forged into every vault through the destroy mechanism.

SOX Compliant

Full audit trails with tamper-evident logging for financial data. Export-ready compliance reports.

Attorney-Client Privilege

No third-party access. Documents remain in your isolated crucible, preserving privilege absolutely.

Note: Obsidian provides the technical infrastructure to support compliance. Compliance certification depends on your organization's overall security posture and implementation.

Step inside the crucible

Forge a vault and witness true document privacy.

Get StartedNo credit card required