Privacy Policy

1. Data Processing and AI Model Routing

Depending on the user’s configuration, data may be processed through third-party AI providers selected by the user (such as OpenAI or Anthropic) or through self-hosted/local runtimes selected and operated by the user (such as Ollama). The application only routes your inputs to external providers when explicitly configured by you.

2. User Responsibility for Data Subjects

Users are responsible for ensuring they are entitled to process and transmit the data they upload. Users must assess whether their chosen AI provider or local runtime is appropriate for their legal and regulatory data privacy obligations (e.g., GDPR, HIPAA).

Note: Utilizing local models (e.g., via Ollama) does not automatically guarantee compliance with broader data protection frameworks. Users remain responsible for securing their own infrastructure and validating outputs.

3. Training on Customer Data

Retriqs does not autonomously use customer uploaded content or query logs to train, fine-tune, or improve foundational AI models, unless a separate, explicit agreement stating otherwise has been executed between the enterprise user and Retriqs.

4. Infrastructure Data

We may collect basic telemetry and usage metadata from our web interfaces to monitor health and performance, which is separated from the proprietary unstructured data you push into the document pipelines.

5. Security and Vulnerability Reporting

In compliance with the EU AI Act and the Cyber Resilience Act, we are committed to maintaining the highest standards of security and digital resilience. If you discover a security vulnerability or have any security-related concerns regarding our platform, please report it immediately to our dedicated security team at security@d3vs.nl. We actively investigate all reports to ensure the ongoing safety and integrity of our product.