Privacy Policy
Last Updated: February 2026
1. The "Zero Visibility" Guarantee
Kovalent is engineered under a split-plane architecture: a Control Plane (managed by us) and a Data Plane (your isolated nodes running within a private mesh network). We establish the secure connection between you and your nodes, but we do not have visibility into the traffic, prompts, embeddings, or documents flowing between your devices and your nodes. Your traffic is entirely end-to-end encrypted.
2. Artificial Intelligence & Customer Data
WE DO NOT TRAIN MODELS ON YOUR DATA.
As an AI infrastructure orchestration platform, Kovalent provisions isolated environments (Nodes) for your large language models and vector databases. The prompts, inputs, contextual documents, and outputs processed by your nodes remain within your sovereign network boundary. Your data is protected by strict Linux namespaces, dedicated Unix file permissions, and AES-256 encrypted EBS volumes. We do not inspect, log, or use your data to train public or proprietary models.
As an AI infrastructure orchestration platform, Kovalent provisions isolated environments (Nodes) for your large language models and vector databases. The prompts, inputs, contextual documents, and outputs processed by your nodes remain within your sovereign network boundary. Your data is protected by strict Linux namespaces, dedicated Unix file permissions, and AES-256 encrypted EBS volumes. We do not inspect, log, or use your data to train public or proprietary models.
3. Data Collection
While we cannot see your AI interactions, our Control Plane collects the minimum amount of information required to provide our orchestration services:
- Account Information: Name, email address, and authentication credentials.
- Billing Information: Processed via our PCI-compliant partner (Stripe). We do not store full credit card numbers.
- Platform Telemetry: System metrics required for auto-scaling and monitoring node health (e.g., CPU, Memory utilization).
- Automated Data: IP addresses and `HttpOnly`, `SameSite` Strict cookies strictly for authentication and security purposes against unauthorized access.
- Account Information: Name, email address, and authentication credentials.
- Billing Information: Processed via our PCI-compliant partner (Stripe). We do not store full credit card numbers.
- Platform Telemetry: System metrics required for auto-scaling and monitoring node health (e.g., CPU, Memory utilization).
- Automated Data: IP addresses and `HttpOnly`, `SameSite` Strict cookies strictly for authentication and security purposes against unauthorized access.
4. Data Sharing
We do not sell user data. Data is only shared with essential third-party service providers (such as AWS for infrastructure hosting or Stripe for payment processing) strictly for the purpose of operating the Kovalent platform. All providers are bound by strict data processing agreements.
5. Your Rights
You have the right to request access to the data we hold about you, request corrections, or request deletion of your account and associated data (the right to be forgotten). You can exercise these rights directly from your Account Settings or by contacting us.
6. Contact Us
If you have any questions or concerns regarding this Privacy Policy, please contact our privacy team at:
Email: info@kovalentai.com
Email: info@kovalentai.com