Legal · Privacy

Privacy Policy — plain English, engineer-grade detail.

Effective: May 26, 2026 Last updated: May 26, 2026 Version: 1.1

01Overview & scope

EgisAI ("EgisAI", "we", "us") provides a runtime governance platform for AI agents and applications. Customers install our open-source Python SDK (egisai), point it at our control plane at app.egisai.co, and use the dashboard to define and review policies, audit traces, and behavioural signals across their AI traffic.

This policy explains what data we handle when you (a) visit our marketing pages, (b) sign up for and use the EgisAI dashboard, or (c) run an application that calls into the EgisAI SDK and forwards governance metadata to our control plane.

It does not govern data your application separately sends to upstream model providers (OpenAI, Anthropic, Google, AWS Bedrock, etc.). Those calls go directly to the provider; EgisAI is not in the network path for the model response payload itself.

Deployment-mode caveat. Deployment modes may vary. This policy describes the current SDK and control-plane deployment described above. If Customer enables a deployment mode where EgisAI proxies model payloads, tool calls, connector traffic, or full request/response content, additional data categories and processing terms may apply and will be disclosed in the applicable order form, DPA, product notice, or updated policy before production use.

02Roles: controller vs. processor

Our legal role depends on what you're doing with EgisAI:

If you require a written Data Processing Addendum (DPA) reflecting this split, email sales@egisai.co — we ship one on request and it is signed before any production rollout in regulated industries.

Where required by GDPR Article 27 or the UK GDPR, EgisAI will identify its EU and/or UK representative in this policy or in the applicable Data Processing Addendum. Enterprise customers who need this contact before signature may request it from sales@egisai.co.

03What we collect

We try to be specific. Below is the actual list, organised by where the data comes from.

Account data (dashboard sign-up)

Operational metadata (dashboard usage)

Governance telemetry (SDK → control plane)

Each time your application makes a governed AI call, the SDK emits an audit event to our control plane. Fields include:

Tool, policy, and connector metadata. Depending on Customer configuration, telemetry may also include tool names, connector categories, workflow identifiers, policy identifiers, policy configuration metadata, enforcement mode, anomaly flags, security event types, and rule evaluation metadata. Customers should not place secrets, raw regulated data, or confidential free-text content in names, labels, policy titles, or configuration fields unless the applicable agreement permits it.

Communications

Email content you send to support@egisai.co, sales@egisai.co, security@egisai.co, etc., is retained for support history and incident response.

Marketing-site analytics

Our marketing site (egisai.co) sets first-party analytics cookies to count visits, sessions, and traffic sources. They load only after you grant analytics consent through the cookie banner, are hard-disabled until then, and run with IP anonymization on and cross-site signal sharing off. The dashboard at app.egisai.co loads no analytics. Full per-cookie detail and the providers we use are listed in §12 Cookies & tracking; you can change your choice any time via the Cookie preferences link in the footer.

04How we use it

We use the data above only for the following purposes:

We do not sell or rent personal data. We do not share governance telemetry with third parties for advertising, profiling, or training.

We may use aggregated, non-identifying operational metrics — for example counts of governed calls, latency distributions, and verdict ratios — to improve the reliability, performance, and usability of the Service. We do not use customer-specific prompt, response, or telemetry content for AI-model training, fine-tuning, benchmarking, or evaluation, except with written customer opt-in.

05Local-first redaction & minimisation

EgisAI was designed under one rule: raw regulated data must not leave the SDK boundary in clear form. We enforce that with a two-phase policy engine:

The audit-event preview shipped to our control plane is sampled after redaction, so what you see on the dashboard reflects what the upstream model actually saw — never the pre-redaction original. Sanitisation tallies in the audit row record type and count only, never the raw value, and never a hash that could reverse it.

If the local PII engine errors mid-evaluation, the call is treated as if sensitive content was detected (we fail closed on PII). The product's general availability fail-open Behavior, documented in our Terms of Service, does not extend to letting raw PII through.

06No training on customer data

We do not use customer data to train, fine-tune, or evaluate any AI model — neither our own nor third-party foundation models. We do not share customer data with third parties for that purpose.

The one LLM call EgisAI makes on the governance path is the semantic-guard judge. That call goes to OpenAI's API under contractual terms that, as of the date of this policy, prohibit training on API inputs and outputs without opt-in. The data we send the judge has already been redacted by Phase 1 (see Section 05).

Auto-generated dashboard summaries (the one-line intent narrative) are produced on the same basis: a small model receives the already-redacted preview, returns a 220-character sentence, and the prompt/response pair is not retained for training.

07Retention & deletion

Governance telemetry retention is plan-bound:

PlanAudit-log retentionAnomaly historyNotification history
Free7 days7 days7 days
Enterprise90 days (extendable by contract)365 days365 days

Other data classes:

Deletion & export

You can delete your workspace and request deletion of associated data at any time from the dashboard or by emailing support@egisai.co. We will confirm completion. Enterprise plans include bulk audit-log export for use in your own retention systems; ask your account contact or email support@egisai.co.

08Subprocessors

We use a small, deliberately short list of subprocessors to operate EgisAI. We will give customers reasonable notice in this section before adding a new subprocessor that processes governance telemetry.

SubprocessorPurposeData processedRegion
Neon (Databricks Inc.)Managed Postgres hosting for the EgisAI databaseAccount, telemetry, audit-log rowsUnited States
Google Cloud PlatformCompute, networking, and storage for the EgisAI backendAll data at rest and in transit on our infrastructureUnited States
OpenAI, L.L.C.Semantic-guard judge model (Phase 2) and auto-generated dashboard summariesPost-redaction prompt/response text only — typed labels in place of PIIUnited States
Resend, Inc.Transactional email (verification codes, password reset, alerts)Recipient email address and message bodyUnited States
Google (Sign-In)SSO — only when you choose Google as your sign-in methodOpenID sub, email, display nameUnited States
Microsoft (Entra ID)SSO — only when you choose Microsoft as your sign-in methodOpenID sub, email, display nameUnited States / your tenant region
GitHub, Inc.SSO — only when you choose GitHub as your sign-in methodOAuth id, email, login handleUnited States

Customers may request or subscribe to subprocessor change notices by emailing support@egisai.co. Where required by an applicable DPA, customers may object to a new subprocessor on reasonable data-protection grounds before that subprocessor is used to process their governance telemetry; we will work in good faith to provide an alternative or, if none is available, allow the customer to terminate the affected portion of the Service without penalty.

09International data transfers

EgisAI is operated from the United States. If you access the service from outside the United States, your data will be transferred to and processed in the United States and any other country in which we or our subprocessors operate. Where required, we rely on the European Commission's Standard Contractual Clauses (SCCs) and equivalent UK / Swiss addenda to provide appropriate safeguards for cross-border transfers. A signed copy can be issued under the DPA on request.

Our DPA includes transfer safeguards, including the European Commission's Standard Contractual Clauses (and the UK / Swiss addenda where applicable) and technical and organisational measures such as encryption in transit and at rest, access controls, audit logging, and data minimisation. A signed copy of the transfer annex is available under the DPA on request.

10Security

We take security seriously because the integrity of this product is our customers' integrity. Highlights:

Certification status. The platform is being built with SOC 2, ISO 27001, GDPR, HIPAA, and enterprise security expectations in mind. EgisAI is not currently SOC 2, ISO 27001, HIPAA, FedRAMP, PCI DSS, or other formally certified or attested unless expressly stated on the Security page with current supporting evidence. Customers must complete their own compliance assessment before relying on the Service for regulated workloads.

11Your rights (GDPR / CCPA / similar)

Depending on where you live, you may have the right to:

To exercise these rights, email support@egisai.co from the address on your account, or have your workspace administrator make the request on your behalf. We will respond within the timeframes required by applicable law (typically within 30 days).

If your data is in the platform as part of your employer's workspace, your employer is the controller for that telemetry — please direct the request to them first. We will assist them in fulfilling it.

California notice. If you are a California resident, the categories of personal information we may collect include identifiers (e.g. account email, hashed end-user identifiers), internet or other electronic network activity (request and audit metadata), commercial information (plan, billing records), professional or employment-related information (workspace role), and inferences drawn from service use (anomaly flags, telemetry-derived metrics). We use this information for the purposes described in the "How we use it" section above. We do not sell or share personal information for cross-context behavioural advertising, and there is no "sale" or "sharing" to opt out of under CCPA / CPRA.

12Cookies & tracking

We split cookies into three categories. You can grant or deny each one independently in the cookie preferences modal (footer → Cookie preferences) and change your mind any time.

1. Strictly necessary Always on

Exempt from consent under the ePrivacy Directive Art. 5(3) ("strictly necessary for the provision of a service explicitly requested by the user").

2. Analytics Off by default

3. Marketing Off by default

Analytics and marketing cookies load only after you grant consent through the on-page cookie banner. Until consent is granted (and immediately after consent is revoked), the analytics tag is hard-disabled, no analytics cookie is written, and no measurement beacon is sent. You can change your choices any time via the footer "Cookie preferences" link, and this page will be updated at the same time any new analytics or advertising tool is enabled.

13Children

EgisAI is a B2B developer tool. It is not directed at children under 16, and we do not knowingly collect personal data from them. If you believe a child has provided us with personal data, please contact support@egisai.co so we can delete it.

14Changes to this policy

We may update this policy as the product evolves. Material changes will be flagged with a new "Effective" date at the top of this page, and — for material changes that affect existing telemetry handling — we will notify workspace owners by email before they take effect. Continued use of the platform after the effective date constitutes acceptance.

Prior versions of this document are available on request at support@egisai.co. We will publish an on-site archive at /legal/archive once more than one version has been issued.

15Contact

Questions, requests, or comments:

The contracting entity is Egis Labs, Inc., a Delaware corporation. Postal mail can be sent to the address disclosed under the DPA; if you need a postal address before signing a DPA, email sales@egisai.co and we will provide it.

Plain-English summary. We collect what we need to run the governance platform you signed up for, we redact PII locally before it leaves your process, we don't train models on your data, we keep a short, named list of subprocessors, and we will delete or export your data on request. If anything in this policy is unclear or surprises you, please tell us so we can fix it.