CPQAI operates with the security expectations of the aerospace and defence supply chains we serve. Our clients' pricing logic, customer data, and quoting history are commercially sensitive assets. We treat them accordingly.
All traffic to and from cpqai.co.uk is encrypted using TLS 1.2 or higher. HTTP requests are redirected to HTTPS.
No Google Analytics, no advertising pixels, no third-party tracking scripts. Only functional code runs on this website.
We collect only what is necessary. Contact data is never sold, never shared with advertisers, and never used for purposes beyond responding to enquiries.
Client submissions (intake forms, pipeline data) are stored in a password-gated dashboard. Access is restricted to named CPQAI personnel.
cpqai.co.uk is delivered as static HTML files. No server-side code execution on the public site means a minimal attack surface.
CPQAI is targeting Cyber Essentials certification in 2026, in line with the expectations of UK defence supply chain customers.
Client-provided data (historical quotes, pricing logic, customer lists, materials rates) is used exclusively to build and operate the CPQAI system for that client. It is:
CPQAI's embedded runtime governance layer includes human override controls, automated escalation for out-of-parameter AI outputs, and timestamped audit trails. See the Platform page for full detail on what this means in practice.
If you believe you have identified a security issue with cpqai.co.uk or any CPQAI system, please contact us via cpqai.co.uk/contact. We will investigate and respond within two working days.