Skip to main content

Privacy Policy

Introduction

This AI Cockpit Privacy Policy is complementary to the UOL Group Global Privacy Policy and the AI Cockpit Terms of Use.

Its purpose is to clarify how data is handled across the platform’s different products: Reasoning, Smart Engineering, and Web.

AI Cockpit uses an AI Gateway as a governance layer for all data traffic between the platform and AI model providers (e.g., Azure OpenAI, AWS Bedrock, Anthropic). No data processed by AI Cockpit is used for training or improving AI models.

Data Common to All Products

  • Personal Data: only name and email are stored, for login and user identification.
  • Security: all data is encrypted in transit (TLS) and at rest (AES-256 or equivalent).
  • Isolation: each customer has logically isolated environments.
  • Governance: access is centralized via AI Cockpit authentication and managed by the AI Gateway.
  • Usage and Performance Metrics: AI Cockpit collects telemetry metadata across all products (e.g., executions, token volumes, response times, access logs).
    This data is used exclusively to:
    • monitor platform performance,
    • ensure reliability,
    • generate administrative consumption reports.
      These metadata do not include the full content of prompts, files, or outputs.

Section 1: AI Cockpit Reasoning

  • Reasoning accesses local files only when required to execute AI-assisted features.
  • Files and code snippets are transmitted via the AI Gateway to the chosen provider.
  • AI Cockpit does not store this content, only processes it in real time.

Section 2: AI Cockpit Smart Engineering

  • Smart Engineering stores codebases and documentation uploaded by the customer for analysis and report generation.
  • All data is stored in isolated environments per customer.
  • Data in transit and at rest is protected by encryption.
  • Content remains accessible only to the customer’s organization.

Section 3: AI Cockpit Web

  • All AI interactions in Web are routed through the AI Cockpit AI Gateway.
  • It integrates with work management tools such as Jira, Azure DevOps, BusinessMap, and ServiceNow, collecting only the data required for workflow analysis and productivity metrics.
  • Users can upload files and content (documents, textual bases, etc.) to create private knowledge bases.
  • Uploaded content is stored in isolated, encrypted environments, accessible only to the customer’s organization.

Data Retention

  • Reasoning: does not store prompts, files, or outputs.
  • Smart Engineering: retains codebases and documentation while the organization’s account remains active or until deletion is requested by the user through the interface.
  • Web: retains uploads while the account remains active or until deletion is requested by the user through the interface.
  • Personal data (name and email) is stored as long as the account is active, or until deletion is requested by the user, except when retention is required by law.

User Rights

Users may request:

  • access, correction, or deletion of their personal data (name and email),
  • deletion of uploaded content (subject to the organization administrator’s management).

Security

  • Encryption in transit (TLS) and at rest (AES-256).
  • Logical data isolation per customer.
  • Access control via AI Cockpit authentication.