Skip to end of banner Go to start of banner

Security Architecture - Multi-tenant Chat

Skip to end of metadata

Created by Michael Dreher, last modified by Andreas Hauri on Sept 25, 2024

Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Overview

Azure Storage Accounts

data at rest is secured with soft delete for 30 days

Azure OpenAI Deployments

prompts are filtered using Azure content filtering
prompts and responses are not stored or reviewed by Microsoft (Azure abuse monitoring)

SSO

SSO can be configured to connect to customer IDP using Entra, OIDC, SAML, and other methods supported by Zitadel

Comparison with Single Tenant Deployment Model

On the multi-tenant (SaaS) chat deployment model the most notable differences from the Single Tenant deployment model are:

data at rest is mostly encrypted with Microsoft / platform-managed encryption keys
data at rest is stored in shared storage accounts with other customers
data at rest is always stored in Switzerland (Switzerland-north)
data is processed on the same backend service instances with other customers
users are logging in on the same zitadel instance with other customers

Author	Michael Dreher

No labels

© 2024 Unique AG. All rights reserved. Privacy Policy – Terms of Service