Where is InfraMind data hosted?

Customer data is hosted in the United States on a major cloud provider, with US-based primary and backup regions. No customer data is stored outside the United States.

Does InfraMind replace our EAM, CMMS, or GIS?

No. InfraMind is the owner-side capital planning layer that sits on top of the EAM, CMMS, and GIS systems you already run, reading condition data from sources such as Esri. It reads condition data and writes back a prioritized capital plan; your operational systems remain the system of record.

How is access to capital planning data controlled?

InfraMind uses least-privilege, role-based access control mapped to roles such as planner, reviewer, and administrator. Single sign-on lets your agency enforce its own MFA and deprovisioning policies through your identity provider.

How does InfraMind support our security review?

InfraMind protects capital planning data with encryption in transit and at rest (AES-256), least-privilege role-based access control, single sign-on, audit logging, tenant isolation, and US-based data residency. Email support@inframindai.com or request a demo to discuss your security review.

Security

Security & Data Protection at InfraMind

InfraMind is built for public-sector due diligence: encryption, role-based access control, audit logging, tenant isolation, and US-hosted data residency.

Quick answer. InfraMind is AI capital planning software that protects public-sector data with encryption in transit and at rest, least-privilege role-based access control, single sign-on, audit logging, and US-hosted data residency. As an owner-side planning layer, it reads condition data from the EAM and GIS systems you already run and writes back a defensible capital plan.

How InfraMind secures public-sector capital planning data

Security at InfraMind is the set of controls that protect the condition data, budget scenarios, and multi-year capital improvement plans an agency entrusts to the platform. Because InfraMind sits on top of the EAM, CMMS, and GIS systems an agency already runs — rather than replacing them — the platform is designed to handle a copy of asset and condition data, model deterioration and funding scenarios on it, and return a prioritized plan, without becoming the system of record for day-to-day operations.

Encryption in transit and at rest

All data moving between your browser and InfraMind is protected with TLS, and customer data is encrypted at rest using industry-standard AES-256.

Role-based access control

Least-privilege RBAC governs who can view or change capital planning data. Permissions map to roles (planner, reviewer, administrator) rather than to individuals.

US data residency

Customer data is hosted in the United States to support public-sector data-residency and sovereignty requirements.

Single sign-on

InfraMind supports SSO so agencies can enforce their own identity policies — MFA, session timeouts, and central deprovisioning — through their existing identity provider.

Audit logging

Material changes to plans, scenarios, and prioritization inputs are logged so an agency can show a council, auditor, or grant reviewer how a number was produced.

Tenant isolation

Each agency's data is logically isolated. Your condition data, scenarios, and capital plans are never commingled with another customer's.

Hosting model and data residency

InfraMind’s hosting model is the cloud infrastructure and region where customer data lives and is processed. Customer data is hosted in the United States on a major cloud provider, in regions that support the data-residency expectations common to state and local government and federal-adjacent buyers.

US-based primary and backup regions; no customer data is stored outside the United States.
Encrypted, automated backups with defined retention; recovery procedures are tested.
Environment separation between development, staging, and production.

Hosting details for your security questionnaire. For specific cloud provider, region identifiers, and recovery objectives, contact our security team at support@inframindai.com.

Security controls and data residency

The table below summarizes the security controls and data-residency practices InfraMind has in place. For the procurement-facing view of the same information, see the Trust & Compliance Center.

InfraMind security controls and data-residency practices.
Control	Status	What it covers
Encryption	In place	TLS in transit and AES-256 at rest for customer data.
Access control	In place	Least-privilege, role-based access control with single sign-on and audit logging.
Tenant isolation	In place	Each agency's condition data, scenarios, and capital plans are logically isolated.
US data residency	By design	Customer data stored and processed in the United States.
Website accessibility	WCAG 2.1 AA targeted	This website targets WCAG 2.1 AA — see our Accessibility Statement.

Reporting a vulnerability

We welcome reports from security researchers and agency security teams. If you believe you have found a vulnerability in InfraMind, email support@inframindai.com with the details and steps to reproduce. We acknowledge reports and work to remediate confirmed issues promptly.

Frequently asked questions

Run InfraMind through your security review

See how InfraMind protects public-sector data with encryption, role-based access control, and US-hosted data residency — then watch it turn asset condition into a defensible capital plan.