Privacy Policy
1. Information We Collect
We collect information that you provide directly to us, information we obtain automatically when you use our services, and information from other sources. This includes:
- Personal identification information (name, email address, etc.)
- Usage data and analytics
- Device and connection information
2. How We Use Your Information
We use the collected information for various purposes, including:
- Providing and maintaining our services
- Improving user experience
- Sending notifications and updates
- Customer support
3. Information Sharing
We do not sell or rent your personal information to third parties. We may share your information only in the following circumstances:
- With your consent
- For legal requirements
- To protect our rights and safety
4. Data Security
We implement appropriate security measures to protect your information from unauthorized access, alteration, disclosure, or destruction.
5. Privacy-First & Unique Data Security Features of PrivateDLP
PrivateDLP is built around a privacy-first architecture. Beyond standard safeguards, we offer distinctive capabilities that give enterprises full control over how their visual data is processed and stored.
5.1 AI Audit — You Choose the Model, You Own the Data
PrivateDLP includes an optional AI-powered audit feature that analyzes alert screenshots for security context. To protect your privacy, the design of this feature is fundamentally different from consumer AI tools:
- Default model — Gemini (no training on your data): Out of the box, PrivateDLP uses our default Gemini configuration to analyze screenshots. Screenshots sent for AI audit are processed with strict data-handling guarantees and are never used to train Google’s Gemini models or any other foundation models.
- Bring Your Own AI (BYO-AI): Enterprise customers are not locked into a single vendor. You can configure PrivateDLP to use your own enterprise AI account — whether that is OpenAI, Claude (Anthropic), or Google Gemini — so screenshots are processed under your own organization’s contract and data terms.
- Self-hosted / on-premises LLM support: For organizations with the strictest data-residency or air-gapped requirements, PrivateDLP supports integration with LLM models deployed inside your own corporate environment. Screenshots can be analyzed entirely within your perimeter, never leaving your infrastructure.
- Opt-in by design: AI audit is an opt-in feature. You decide when, where, and with which model it runs. Disabling it returns PrivateDLP to fully local, rule-based detection with no external AI calls.
5.2 Screenshot Storage — Your Data Stays in Your Enterprise
Alert screenshots are among the most sensitive artifacts generated by any endpoint security product. PrivateDLP is designed so that this data never has to leave your enterprise boundary:
- Customer-specified storage: In the Pro edition, every alert screenshot can be stored directly into a destination designated by your enterprise — for example, your own S3-compatible bucket, Azure Blob, Google Cloud Storage, on-premises file server, or any compatible object store.
- PrivateDLP secure storage: If you prefer a fully managed option, screenshots can be stored in our hardened, encrypted secure storage, isolated from any training or analytics pipeline.
- Data residency by default: Whether you choose your own storage or ours, all alert data — screenshots, metadata, and audit logs — is kept under your enterprise’s control. All enterprise data can remain inside the enterprise; it is never sold, shared, or used to improve external models.
- Encryption & access control: Stored screenshots are encrypted in transit and at rest, with access governed by your existing identity and access management policies.
6. Contact Us
If you have any questions about this Privacy Policy, please contact us at: busdev@privatedlp.com