Security Settings
The Security settings page lets you manage your organization’s security policies and access controls.
Login and Authentication Security
You can restrict the IP address ranges that are allowed to access organization login. If the allow list is empty, login is allowed from all IP addresses.
Login IP Access Control List (ACL)
Enter the IP addresses or CIDR ranges to allow.
- Single IP addresses are supported.
- CIDR notation can be used to enter IP ranges.
- Separate multiple entries with line breaks.
After changing the settings, click Update Login IP ACL to apply them to the organization.
Data Loss Prevention (DLP)
DLP settings let you manage the sensitive data types to detect in user inputs and AI outputs.
Sensitive Data Type Detection
You can select the sensitive data types to detect.
- Credentials: Passwords, API keys, tokens, certificates, and more
- Government ID: Passports, driver’s licenses, resident registration numbers, and more
- Sensitive Personal Information (SPII): Financial accounts, credit cards, medical records, and more
- Demographic Information: Age, date of birth, person images, and more
- Personally Identifiable Information (PII): Names, email addresses, phone numbers, IP addresses, and more
- Other Information: Blood type, toll-free numbers, and more
Select the required items, then click Update DLP detection settings to save.
Custom Regex Patterns
You can add custom regex patterns to detect sensitive information that your organization needs to manage separately.
- InfoType name: A unique identifier for the pattern. It must start with an uppercase letter and can contain only uppercase letters, numbers, and underscores.
- Regular expression pattern: The JavaScript regular expression pattern used for detection.
- Description: The purpose or example of the pattern.
For detailed configuration of sensitive data types and custom regex patterns, refer to DLP Management.
Chat History Management
You can set how long organization chat history is retained. Chat history older than the configured retention period is automatically deleted.
Retention Period Settings
You can select one of the following options.
- Unlimited: Chat history is not automatically deleted.
- 1 year (365 days)
- 3 years (1,095 days)
- 5 years (1,825 days)
- 10 years (3,650 days)
How to Change Settings
- Select the retention period from the dropdown.
- Click Edit.
- The changed retention period is applied to the organization.
Chat history older than the retention period becomes subject to automatic deletion. Check your organization’s security policy and data retention requirements before changing this setting.
Chat Execution Policy
Set the default value and upper limit for the organization’s chat recursion limit. Users can set their personal value within the organization upper limit.
- Default: The recursion limit applied when the user has not changed the setting.
- Upper limit: The highest recursion limit users can select in their personal settings.
Users can adjust the value in Recursion Limit under User Settings, within the range allowed by the organization.