Tender Intelligence is built with a two-system air-gapped architecture. Document storage and AI processing run entirely within your servers. No data not a single page, not a single byte ever leaves your network perimeter. Compliant with MeitY, CERT-In, IT Act 2000, and DPDP Act 2023.
Compliance Framework
Stores all uploaded documents, processed outputs, and extracted text. Encrypted at rest (AES-256). Fully air-gapped no internet access. Lives on your on-premise servers, accessible only via internal LAN.
Runs document processing, AI inference, criteria matching, and evaluation logic. Connects only to System 1 via internal network. No outbound calls. No telemetry. No external dependencies during processing.
Fully on-premise on Indian government-approved servers. Zero internet dependency for processing. Works in environments where even outbound DNS is blocked.
AES-256 at rest and TLS 1.3 in transit. Encryption keys generated and stored within your HSM/KMS. Keys never leave your infrastructure.
Granular RBAC with MFA. Four role tiers Admin, Evaluating Officer, Reviewer, Auditor. Every user action is logged with tamper-proof audit trails.
Mandatory 180-day log retention per CERT-In 2022 directive. Forensic-ready audit records. Append-only logs that cannot be modified or deleted.
No document data stored post-evaluation. Documents purged per your retention policy. No shadow copies, no caching, no data used for model training.
Quarterly VAPT by empanelled CERT-In auditors. OWASP Top 10 controls enforced continuously. Penetration testing reports available on request.
