FAQ

Buyer questions,
answered straight.

Pulled from real procurement, DPO, and CISO conversations. Where the answer is "no", it says "no". Where the answer is "not yet, on the roadmap", it says exactly that. Six categories: data, security, contracts, refunds, integrations, deployment.

Data & jurisdiction

Where data lives, who can read it.

01
Where is my data hosted? OVHcloud bare metal in Roubaix, France. EU jurisdiction. Disaster-recovery mirror at Hetzner CPX22 (also EU). Immutable backup copy at OVH SBG (Veeam Object Lock, 14 days). Not subject to the US CLOUD Act.
02
Who can read my data inside 79th Unit? The founder and named operations engineers, with role-scoped access. Audit log records every read of customer data. We sign DPAs and assign a named compliance contact at Team and Enterprise tiers.
03
Do you train models on my data? No. CHAPEL fine-tunes are tenant-scoped at Enterprise tier and only on your own corpus, with your written consent. No cross-tenant pooling. Your data does not improve a base model anyone else uses.
04
What happens to my data if I cancel? Data is retained for 30 days post-cancellation to allow export. Hard-deleted on day 31, including from backups on the next backup-rotation cycle (max 14 additional days for the immutable copy). Final retention figure: 45 days worst-case. Subject to UK GDPR Article 17 erasure requests via the subject portal where applicable.

Security

What is enforced architecturally.

01
Are you ISO 27001 / SOC 2 certified? Not yet. Controls aligned with both, certifications on the roadmap once the customer roster supports the audit cost. Cyber Essentials Plus is in scope for FY26-27.
02
Encryption? ECDSA P-256 dossier signing. AES-256-GCM for symmetric encryption in cs-core. PostgreSQL with pgcrypto. TLS 1.2/1.3 in transit. Disk encryption at the OVH host level.
03
How does authentication work? Keycloak self-hosted, OIDC. SAML SSO at Enterprise tier. Optional MFA at every tier. Session lifetime configurable at tenant level.
04
Vulnerability disclosure? security@79thunit.com. Acknowledgement in 2 working days. Triage in 5. Fix windows: Critical 7d / High 14d / Medium 30d / Low 90d. Public credit on request after fix. No formal bounty programme yet.

Contracts & commercials

How we sell, on what terms.

01
Can I sign a custom MSA? Yes, at Enterprise tier. We have a standard MSA and a standard DPA on request, both in plain English, both governed by English law and submitted to the courts of England and Wales.
02
Can I prepay annually and get an invoice? Yes. Stripe Invoicing for annual prepay, BACS or wire. Net 30 standard, Net 14 if a procurement portal demands it.
03
Are you on G-Cloud / DOS / similar frameworks? Not yet. On the roadmap once the customer roster justifies the application overhead. Direct contracts available now.
04
Limitation of liability? Cap at fees paid in the prior 12 months, with carve-outs for data-protection breach (uncapped) and IP infringement (uncapped) per UK norm. Standard for B2B SaaS at this scale.

Refunds & cancellation

When you can get money back.

01
Trial. 7 days free. No card. Cancel any time. Pay nothing.
02
Monthly plans. Cancel any time from the customer dashboard. No refund for partial months. Service ends at the end of the current billing period.
03
Annual plans. Pro-rata refund inside the first 30 days, no questions. After day 30, no further refund; service runs until renewal and cancels then.
04
Founding Member. Non-refundable after seat provisioning. Refunded in full within 7 working days only if 79th Unit Limited rejects the application before provisioning (sanctions / KYC fail / fraud / tier-eligibility mismatch).

Integrations & data

What plugs in, what does not.

01
Connectors out of the box. 64+ UK and IE sources pre-wired (46 UK police forces, Police Scotland, PSNI, Garda, Interpol, Missing People charity, NCA, Companies House, etc). 12 priority third-party connectors on the roadmap. Full register at investigations consultancies use case.
02
Bring my own connector. YAML connector spec is documented. Customer-built connectors run inside the same proportionality gate and the same audit log as built-in ones. Enterprise-tier customers can have connectors built and operated for them.
03
API for outbound integration. REST API key per analyst at Analyst tier. Programmatic dossier export with the signed envelope. Webhooks at Team and Enterprise. Documented in-cockpit at /developers (signed in).
04
Export formats. PDF (signed), JSON (signed envelope), HTML (signed envelope), CSV (no signature, for spreadsheet use). Recipient verifies the signed forms at verify.clearsky.79thunit.co.uk/v/<doc_id>.

Deployment & rollout

How customers go live.

01
Time to first signed dossier. Trial: under 30 minutes. Analyst seat: same day. Team seat: same day, plus knowledge-graph onboarding scheduled. Enterprise: 4 to 8 weeks for CHAPEL fine-tune and tier model shaping.
02
Training. Self-serve docs at /developers (signed in). One-hour live session included with Team and Enterprise. Custom training curriculum at Enterprise.
03
On-prem deployment. Not in the standard offering. Air-gapped or sovereign-cloud deployments are an Enterprise conversation. The platform is built around managed multi-tenant by default; on-prem requires a dedicated Docker Compose roll-out and an SLA.
04
Data import from spreadsheets / legacy tools. CSV import handled at Team and above. Custom import jobs built per Enterprise contract. The resolution engine deduplicates against your existing knowledge graph during import; it does not blow away prior history.

Question not here?

Ask in plain English.

We get one chance to answer the questions a buyer actually has. If your question is not above, send it directly. Procurement, DPO, and CISO routes are at /contact.

Ask a question Read the security page

Buyer questions,answered straight.