Privacy Policy

1. Information We Collect

At Secure Agent Platform (SAP), we prioritize data minimization. Since our architecture ensures zero data exfiltration by design, we do not have access to, nor do we collect, the contents of the prompts, responses, or specific workflow data executed within your Virtual Private Cloud (VPC).

We collect only the essential telemetry information necessary to facilitate the control plane connection, including:

• Administrative account details (name, corporate email, role).
• High-level system telemetry (uptime, latency, error status codes).
• Billing and aggregated usage metrics for enterprise licensing.

2. How We Use Information

Your data is exclusively used to maintain the functional integrity of your deployment, provision updates, and handle billing. We never use your data, telemetry, or user information to train internal or third-party artificial intelligence models.

3. Data Security & Storage

Telemetry data passing through our control plane is continuously encrypted in transit via TLS 1.3 and at rest using AES-256 encryption. All cryptographic keys are rotated automatically and remain bound strictly to your tenant environment.

4. Compliance & Certifications

Secure Agent Platform complies with all major global data privacy frameworks including GDPR, CCPA, and CPRA. Our infrastructure is actively audited for SOC2 Type II, ISO 27001, and HIPAA compliance. If you require specific BAA arrangements, please contact your account representative.

5. Contact Us

For privacy-related inquiries, please contact our Data Protection Officer at privacy@sap.example.com.