Privacy FAQ
Frequently asked questions about data privacy and personal data handling.
Frequently Asked Questions
Does Future AGI use customer data for AI training?
No. Future AGI never uses customer data — including traces, evaluation results, datasets, or any other content sent to the platform — to train AI models. Your data is used solely to provide the services you have contracted. This commitment is codified in our Data Processing Agreement and Terms of Service.
Is a DPA available?
Yes. A Data Processing Agreement is available for all Future AGI Cloud customers, regardless of plan tier. The DPA covers obligations under the GDPR, UK GDPR, and CCPA. To request a copy, email legal@futureagi.com. See the DPA page for full details.
How long is data retained?
Data retention depends on your plan:
| Plan | Retention Period |
|---|---|
| Free | 30 days |
| Boost | 90 days |
| Scale | 1 year |
| Enterprise | Custom (configurable) |
Data is automatically purged after the retention window expires. Enterprise customers can configure retention periods per project. See Managing Personal Data for details on retention controls.
What happens to my data when I cancel?
All customer data is deleted within 30 days of account termination or contract expiration. This includes trace data, evaluation results, datasets, and any other content stored on the platform. A certificate of deletion is available on request. Account-level metadata (organization name, billing history) may be retained as required by law.
Can I export my data?
Yes. You can export all of your data at any time via the Future AGI API. Exports include trace and span data, evaluation results, datasets, and guardrail decision logs in structured JSON format. There are no restrictions on export frequency or volume.
What is the data classification policy?
Future AGI classifies all customer data as Confidential. This classification means:
- Data is encrypted at rest using AES-256 and in transit using TLS 1.2+
- Access is restricted to authorized personnel on a need-to-know basis
- Logical tenant separation ensures that one customer’s data is never accessible to another
- All access to customer data is logged and auditable
For details on encryption, see the Encryption page.
How does BYOK work for privacy?
With Bring Your Own Key (BYOK) evaluations, you provide your own API keys for the underlying LLM provider. In this configuration:
- Your prompts and data are sent directly to your provider using your credentials
- Future AGI orchestrates the evaluation workflow but never sees raw model responses for BYOK evaluations
- Only the structured evaluation scores and metadata are stored on the Future AGI platform
- This approach is ideal for organizations with strict data residency or confidentiality requirements that prohibit sending data through third-party inference endpoints