Security and data handling

Last updated May 12, 2026

InsightsNexus is designed for practitioners who may already work inside hardened VMs, VPNs, proxies, or other controlled investigation environments. The product direction is local-first: case data should stay on the user's machine instead of requiring a hosted case workspace.

Local-first case workflow

Investigation data, including entities, graph work, notes, and project files, is intended to remain on the user's machine. No cloud workspace is required for case data in the design partner workflow described on this site.

Outbound network activity

Product outbound traffic is limited to user-triggered transforms against public sources, as long as that remains accurate in the shipped build. Because those transforms use the user's environment, existing VM, VPN, proxy, DNS, and egress controls should continue to matter.

Website data

The public website collects the email address submitted through the design partner or newsletter forms so I can follow up. The site also loads privacy-focused analytics to understand basic traffic. See the privacy policy for more detail.

Design partner expectations

Do not submit sensitive case files, confidential client materials, or restricted operational data through the public website form. If your organization needs a deeper security review before participating, request the design partner invitation first and raise that requirement before using the product on sensitive work.

This page is a public summary. It will be updated as the product, deployment model, and design partner process become more formal.