Security
Safe, secure, and private.
Your research data is your business. We built Peridot to keep it that way.
Security
Safe, secure, and private.
Your research data is your business. We built Peridot to keep it that way.
Security
Safe, secure, and private.
Your research data is your business. We built Peridot to keep it that way.
Built for teams who trust us with research.
Industry-standard encryption, workspace isolation, and transparent data handling.
Built for teams who trust us with research.
Industry-standard encryption, workspace isolation, and transparent data handling.
Encryption in transit
All traffic to Peridot uses HTTPS and TLS.
Encryption in transit
All traffic to Peridot uses HTTPS and TLS.
Encryption at rest
Customer data at rest is encrypted by our cloud infrastructure providers.
Encryption at rest
Customer data at rest is encrypted by our cloud infrastructure providers.
Role-based access
Control who can view, edit, or manage research with owner, admin, contributor, and viewer roles.
Role-based access
Control who can view, edit, or manage research with owner, admin, contributor, and viewer roles.
Workspace isolation
Research lives in separate workspaces. Database-level access controls restrict data to authorized members.
Workspace isolation
Research lives in separate workspaces. Database-level access controls restrict data to authorized members.
Audit logs
Key workspace events are logged and retained for 90 days by default.
Audit logs
Key workspace events are logged and retained for 90 days by default.
No individual scoring
Peridot never rates or profiles research participants.
No individual scoring
Peridot never rates or profiles research participants.
Identity management
Sign in the way your team already does.
Identity management
Sign in the way your team already does.
Google sign-in
Authenticate with your Google account.
Google sign-in
Authenticate with your Google account.
Email sign-in
Sign in with a one-time code sent to your email. No password required.
Email sign-in
Sign in with a one-time code sent to your email. No password required.
Admin controls
Only workspace owners and admins can manage integrations, billing, and member access.
Admin controls
Only workspace owners and admins can manage integrations, billing, and member access.
Viewer permissions
Give stakeholders read-only access without letting them change your research.
Viewer permissions
Give stakeholders read-only access without letting them change your research.
Privacy and data handling
You control what’s uploaded and who can access it.
Privacy and data handling
You control what’s uploaded and who can access it.
You control your data
You choose what interviews and feedback enter Peridot and who on your team can access it.
You control your data
You choose what interviews and feedback enter Peridot and who on your team can access it.
AI processing
Transcription and insight generation run through trusted providers OpenAI and AssemblyAI.
AI processing
Transcription and insight generation run through trusted providers OpenAI and AssemblyAI.
Data storage
Your research is stored in Peridot, not in a public training dataset.
Data storage
Your research is stored in Peridot, not in a public training dataset.
Deletion
Workspace owners can delete a workspace and its data, with full account erasure within 30 days of a verified request.
Deletion
Workspace owners can delete a workspace and its data, with full account erasure within 30 days of a verified request.
Share on your terms
Share highlight reels and write-ups via links. Viewers don’t need a Peridot account.
Share on your terms
Share highlight reels and write-ups via links. Viewers don’t need a Peridot account.
US-based infrastructure
Production data is stored and processed in the United States.
US-based infrastructure
Production data is stored and processed in the United States.
Compliance
Peridot is operated by Helix Technologies. We are committed to GDPR and design our product to support teams with privacy obligations. Customer-uploaded research is typically processed on your instructions — you remain responsible for informing research participants.
Report an issue
Email support@askperidot.com with the subject “Security report.” Include steps to reproduce and expected impact. We respond to critical issues within 24 hours.
Billing
Billing is handled by Stripe. Peridot never stores your card details.
Security questions
Everything you need to know about how Peridot stores your data and manages account information.
Where is my data stored?
Customer data lives in Supabase (US). The app runs on Vercel with HTTPS. Billing goes through Stripe. We’re publishing a public subprocessor list for enterprise buyers.
Where is my data stored?
Customer data lives in Supabase (US). The app runs on Vercel with HTTPS. Billing goes through Stripe. We’re publishing a public subprocessor list for enterprise buyers.
How do you keep one customer’s data separate from another’s?
Peridot is multi-tenant by workspace. Row Level Security on Supabase limits access to your workspace. Server keys never reach the browser.
How do you keep one customer’s data separate from another’s?
Peridot is multi-tenant by workspace. Row Level Security on Supabase limits access to your workspace. Server keys never reach the browser.
How do you keep one customer’s data separate from another’s?
Peridot is multi-tenant by workspace. Row Level Security on Supabase limits access to your workspace. Server keys never reach the browser.
How is data encrypted?
TLS in transit. Encryption at rest via our cloud providers. We don’t add a separate app-level encryption layer today.
How is data encrypted?
TLS in transit. Encryption at rest via our cloud providers. We don’t add a separate app-level encryption layer today.
How is data encrypted?
TLS in transit. Encryption at rest via our cloud providers. We don’t add a separate app-level encryption layer today.
What happens when I delete content or my account?
Deleted content is removed after 30 days. Account deletion is completed within 30 days. Audit logs are kept 90 days by default, then purged.
What happens when I delete content or my account?
Deleted content is removed after 30 days. Account deletion is completed within 30 days. Audit logs are kept 90 days by default, then purged.
What happens when I delete content or my account?
Deleted content is removed after 30 days. Account deletion is completed within 30 days. Audit logs are kept 90 days by default, then purged.
How do you handle security incidents and who can access my data?
Email support@askperidot.com. We aim to respond to critical issues within 24 hours. Only our two founders have production access today. SOC 2 is on our roadmap. Monitoring tools are planned.
How do you handle security incidents and who can access my data?
Email support@askperidot.com. We aim to respond to critical issues within 24 hours. Only our two founders have production access today. SOC 2 is on our roadmap. Monitoring tools are planned.
How do you handle security incidents and who can access my data?
Email support@askperidot.com. We aim to respond to critical issues within 24 hours. Only our two founders have production access today. SOC 2 is on our roadmap. Monitoring tools are planned.
No need to rewatch your user interviews. Ask Peridot.
Free to start. Insights in minutes.
No need to rewatch your user interviews. Ask Peridot.
Free to start. Insights in minutes.
No need to rewatch your user interviews. Ask Peridot.
Free to start. Insights in minutes.