- How does Arctory encrypt data?
- All data is encrypted in transit using TLS 1.3+ and at rest using AES-256. These industry-standard controls ensure that client information remains protected during processing and storage.
- Is Arctory GDPR compliant?
- Yes. Arctory provides mechanisms for exercising GDPR rights, applies consistent protection across all regions, and processes data according to GDPR requirements.
- Where is Arctory hosted?
- The application and database are hosted entirely in Germany. AI models run on EU servers (configurable). Organizations may also deploy Arctory in their own infrastructure for full control.
- Does the AI have access to our production data?
- No. AI is only involved when building or editing an application. During that phase, it only sees the software code and database schema, never the actual data stored in your database. Once deployed, no data is ever shared with AI.
- Does Arctory use production data to train AI models?
- No. Production data is never used to train or improve AI models at any point.
- Does Arctory support bring your own API keys?
- Yes. Clients can supply their own API keys for supported AI model providers. This means AI inference runs under your own account, giving you full visibility into usage and ensuring no data is routed through Arctory's model credentials.
- What happens to our data when we stop using Arctory?
- Clients can request deletion of their data at any time. Data is retained only as necessary to provide the service and is removed according to documented deletion procedures.