Skip to main content
Vendo

Security & Trust

Your data stays in your infrastructure.

Vendo is warehouse-native by design. Your data lives in your BigQuery or Snowflake — we process it, we don't store it. Every pipeline is inspectable, every action is logged.

Architecture

Your warehouse is the system of record.

Vendo runs computations inside your infrastructure. We add the marketing data plane — your data never leaves your environment.

Warehouse-native

Every model, pipeline, and computation runs inside your warehouse. Data never leaves your infrastructure. Connect BigQuery or Snowflake, or use Vendo managed storage.

Bring your own LLM

Use your own Claude, GPT, or Gemini API key. AI features with full control over which provider handles your data.

No vendor lock-in

Export modeled tables if you leave. Your data, your models, your warehouse. Vendo adds the marketing data plane; it does not trap your data.

Compliance & Privacy

Privacy by architecture, not just policy.

GDPR compliance, encryption everywhere, and data residency controlled by your cloud provider — not ours.

GDPR compliant

Full GDPR compliance including data processing agreements, right to deletion, data portability, and consent management.

Encrypted at rest and in transit

All data encrypted using industry-standard AES-256 at rest and TLS 1.2+ for all API communication and data transfer.

Data residency

Your data stays in the region you choose. Warehouse-native architecture means data residency is determined by your cloud provider, not ours.

Data minimisation

We process only the data needed for your configured pipelines and models. No unnecessary data collection or retention.

Access Controls

Every action is permissioned and logged.

Role-based access, audit trails, and enterprise SSO — so your team has exactly the access they need, nothing more.

Role-based access (RBAC)

Define roles and permissions for every team member. Control who can view data, run models, configure integrations, and manage billing.

Audit trails

Every action in the platform is logged — model executions, pipeline runs, configuration changes, and user access. Full traceability.

SSO (Enterprise)

Single sign-on via SAML for enterprise customers. Centralise authentication with your identity provider.

Monitoring & Quality

Know what changed, when, and why.

Server-side tracking, proactive pipeline monitoring, and a persistent timeline of every change in your system.

Server-side tracking

First-party data collection that ad blockers can't break. Your data is complete and accurate from the point of ingestion.

Pipeline monitoring

Proactive alerts for sync failures, schema changes, and data quality issues. Problems are caught at ingestion, not after a report is wrong.

Memory

Every pipeline run, schema change, and business decision is logged in a persistent timeline. Your team always knows what changed and when.

Request Access

Book a discovery call.

We work closely with teams using Vendo on real marketing workflows. Book a call to explore fit and get hands-on with the product.

Vendo mascot character illustration