Lai-Lai Cut

Security Overview

Last updated: December 2024. Laicut was designed for teams handling sensitive media. Below is a summary of the controls we maintain to keep customer data safe.

Infrastructure & Data Protection

  • All media and metadata are encrypted in transit (TLS 1.2+) and at rest.
  • Rendering and AI workers run inside isolated VMs with least-privilege IAM roles.
  • Backups are performed daily and retained for 30 days with integrity checks.

Application Security

  • Single Sign-On via Clerk with enforced MFA for administrative accounts.
  • Role-based access control ensures users only see projects they own or have been invited to.
  • Comprehensive logging of edit, render, and export operations for auditability.

Operational Practices

  • Automated vulnerability scanning across dependencies and container images.
  • Quarterly penetration testing and continuous monitoring with Sentry and Datadog.
  • Incident response runbooks with < 1 hour guaranteed acknowledgement SLAs.

Customer Controls

  • Self-service deletion of projects, renders, and generated assets at any time.
  • Configurable retention windows and watermarking for exports.
  • Signed URLs for sharing renders that expire automatically after 72 hours by default.

Questions?

Need a formal security review, DPA, or penetration-test summary? Reach out to security@laicut.com and we’ll get back within one business day.

← Back to Home
Laicut - AI-Powered Video Processing