Privacy Policy
1. Zero Data Retention
-
Architecture Detail: Strict in-memory processing architecture explained
-
Technical Specifics: No caching mechanisms, no temporary storage on disk, no data persistence in backups or logs
​​
2. Stateless Architecture
-
Security Detail: Cryptographically isolated API calls
-
Technical Specifics: No session state or cross-request storage
-
Benefits: Zero risk of data leakage between requests, prevents user profiling or behavioral tracking
3. No Training on Data
-
Guarantee: Contractual backing for IP protection
-
Separation: Complete separation between customer data processing pipelines and model development
-
Commitment: Data never used to train, fine-tune, or improve base models
-
Badge: "Contractual Guarantee" indicator
4. Data Processing & Compliance
-
GDPR: Full compliance with Article 17 (Right to Erasure) by default via non-retention
-
HIPAA: Safeguards implemented for PHI processing (BAA available)
-
Encryption: TLS 1.3 in transit, encrypted at rest
-
SOC 2: Type II controls currently in implementation
-
Badges: "GDPR Art 17" and "HIPAA" compliance indicators
5. Schema & IP Ownership
-
Rights: 100% intellectual property rights retained by customer
-
Portability: Full JSON export capabilities provided
-
No Lock-in: Migrate configurations to your own infrastructure at any time
6. Metadata & Logs
-
What's Logged: Request IDs, timestamps, HTTP status codes only
-
What's Never Logged: Payload content, extracted field values, input text (technically blocked)
-
Retention: 90 days for billing and debugging purposes only
-
Enterprise: Audit logs available for enterprise customers
7. Third-Party Data Sharing
-
Commitment: Zero data sharing or selling
-
Subprocessors: Strictly limited to AWS, OpenAI API
-
Protection: Binding Data Processing Agreements (DPAs) enforcing equal or greater privacy standards
8. Your Rights & Controls
-
Right to Access: Review metadata logs and API usage statistics
-
Right to Deletion: Executed within 24 hours
-
Right to Portability: Export all configurations and schemas
-
Right to Restriction: Service termination triggers immediate purge of all tenant configuration data