How we protect your code and data.
IP assignment, data sovereignty, and delivery integrity built on Israeli engineering standards. This page documents the operational controls that govern every Siema engagement.
Ownership, Jurisdiction & Exit Terms
All work product is assigned to you irrevocably from day one. Contracts are governed under Israeli or Delaware law.
IP Assignment
All work product is assigned to the client irrevocably and worldwide upon creation. No residual rights are retained. No code reuse across engagements.
Jurisdiction
Contracts governed under Israeli law (Tel Aviv) or Delaware (USA), depending on client preference. Both frameworks are pre-approved and available on request.
NDA Coverage
Comprehensive bilateral NDA executed before any engagement begins. Covers all proprietary information, trade secrets, and business logic disclosed during the engagement.
Exit Terms
30-day termination for convenience. Structured offboarding includes environment handoff, access revocation, and device collection. No lock-in, no penalties.
Insurance
Professional indemnity and cyber liability insurance cover all engagements. SLA commitments include contractual remedies for service disruption.
Environment Sovereignty
Engineers operate as resident expertise inside your perimeter. No code or data leaves your control.
Client VPC Execution
All source code, build artifacts, and deployment pipelines reside exclusively in your cloud environment (AWS, Azure, or GCP). No code or data is hosted on Siema infrastructure.
Zero Local Persistence
Endpoint MDM policies enforce zero local code storage. Development happens via remote workspaces within your perimeter. Full disk encryption (AES-256) on all hardware.
No Shared Infrastructure
Siema does not operate shared build servers, storage, or CI pipelines. Each engagement is fully siloed within the client's own infrastructure.
Access Pipeline
All sessions are logged and can be mirrored to your SOC. No persistent credentials. Your SSO remains the master kill switch.
Data Discipline & Audit Trail
Strict data isolation policies govern every engagement. No exceptions, no grey areas.
No AI Training
Client code and data are never used for AI model training, internal tooling, or any purpose outside the engagement scope.
No Code Reuse
Every line of code written during an engagement belongs to the client. Nothing is carried between engagements, reused in templates, or retained in internal repositories.
Data Residency
All client data resides in your cloud infrastructure. Zero data is stored on Siema systems or in Ukraine. Work happens in your VPC.
Session Logging
All shell commands and UI actions are recorded and can be mirrored to your internal SOC or SIEM. 100% commit traceability via standard Git audit trails.
Resilience & Operational Uptime
Enterprise buyers assess geopolitical risk. Our operations are built to eliminate it as a delivery variable.
Distributed Operations
Engineering teams operate across multiple locations. No single office is a point of failure. Hardware, tooling, and access are fully portable.
Connectivity Redundancy
Every workspace is backed by Starlink satellite connectivity and generator power. Internet and electricity disruptions do not affect delivery.
Cloud-First Architecture
All client data resides in your cloud. Zero data is stored locally. Work happens in your VPC, ensuring geopolitical risk does not extend to your data.
Proven Track Record
Operating since 2021 with zero client delivery interruptions — through infrastructure challenges, power grid disruptions, and connectivity events.
Security Questions
Answers to the questions CTOs, CISOs, and procurement teams ask during vendor assessment.
Need a deeper review?
Request our NDA-protected Security Pack or speak directly with engineering leadership about your compliance requirements.
Includes MSA templates, IP assignment deeds, and technical compliance appendices.