Is Buildin evolving toward an open AI workspace with API and BYOK support?

Question

Hi Gavin, \u000aI’m evaluating Buildin as a long\u002Dterm workspace for building and monetizing structured prompt libraries and knowledge systems. I really like the Space + AI concept, but before committing deeper, I’d like clarification on long\u002Dterm extensibility and trust.\u000a\u000aDo you plan to introduce a public API or integrations (webhooks, automation, external workflows) so Spaces or databases could interact with external AI systems?\u000a\u000aAlso, is Bring\u002DYour\u002DOwn\u002DKey (OpenAI/Anthropic/Gemini) being considered?\u000a\u000aEqually important, could you clarify Buildin’s approach to data privacy and security? Specifically: how user data and AI conversations are stored, whether workspace data is used for model training, and what safeguards are in place to ensure data ownership and protection for teams building businesses on Buildin?

Gavin_Buildin · Answer

Thanks for your interest in Buildin.\u000aWe now already support API/MCP and will become more open in the future, enabling more capabilities for interaction with external AI systems/agents. Bring\u002DYour\u002DOwn\u002DKey (BYOK) is on our roadmap and will be supported soon. Space + AI remains a core focus of our ongoing iteration. In addition to our current AI capabilities, we will also soon support AI agent functionality.\u000aAnd below are detailed responses to all of your security‑related questions:\u000a1. Server Location and Data Jurisdiction​\u000aOperating Entity: Buildin is operated by an independent company registered in Hong Kong, complying with Hong Kong’s Personal Data (Privacy) Ordinanceand relevant international data standards.\u000aServer Location: All user data is hosted on AWS (United States) global infrastructure, not on servers located in mainland China. The specific storage region is AWS US East (N. Virginia).\u000aLegal Jurisdiction: As a Hong Kong entity, we are not subject to mandatory jurisdiction under mainland China’s data regulations. Our operations and data management adhere to Hong Kong law and international standards.\u000a2. Data Encryption and Protection​\u000aEncryption in Transit: Full end‑to‑end encryption using TLS 1.3+ protocols​ ensures secure data transmission between clients and servers.\u000aEncryption at Rest: All data (including files, databases, backups) is protected via AES‑256 encryption​ during storage, with keys managed by AWS KMS.\u000aAccess Control: Role‑based access control (RBAC) and support for two‑factor authentication (2FA) enforce the principle of least privilege.\u000a3. AI Training and Data Usage​\u000aCustomer Data Independence: Your business content (such as SOPs, system architecture diagrams, brand IP frameworks) will never be used for AI model training or product improvement.\u000aAI Service Data Isolation: When using built‑in AI features (e.g., intelligent generation), related temporary data is processed solely for real‑time requests and is not retained or reused.\u000aTransparency Commitment: We do not share, sell, or analyze customer content in any form.

ZevsMatic · Answer

Thanks for taking the time to share your roadmap, this is very encouraging to hear, only challenge i have is the concern as I know the Chinese government force all business to share their data?

anwarr · Answer

Please include byok and mcp features when are ready for all the tiers!

Buildin

Share Buildin

Related questions