At Sudoviz Inc. (“Sudoviz,” “we,” “us,” or “our”), we build systems designed for the agentic era of software development. As an AI application security platform focused on identifying non-deterministic output anomalies, logic flaws, and verifying code correctness, we understand that trust is the foundation of our relationship with developers and engineering teams.
This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data and proprietary information when you use our website, SaaS platform, CLI tools, IDE extensions, and related services (collectively, the “Services”).
1. Information We Collect
We collect information to provide a seamless, developer-native experience and to ensure our reasoning engines function correctly.
A. Information You Provide Directly
Account & Profile Data: Name, email address, company name, job title, and authentication credentials (including third-party OAuth tokens like GitHub, GitLab, or Microsoft Azure).
Communication Data: Information you provide when contacting support, participating in our community, or providing feedback.
B. Developer & Agent Telemetry (Automatically Collected)
When you utilize our reasoning engines or local enforcement tools, we collect technical data necessary for system performance and security:
- Environment Data: Operating system, IDE versions, CLI versions, and basic hardware configuration metrics.
- Diagnostic Telemetry: Error logs, crash reports, and performance metrics (e.g., latency in scanning or reasoning unit execution times).
- Execution Context: Metadata regarding agentic actions, such as the volume of code scanned, the types of business logic errors identified, and the specific rulesets applied during execution. Note: This telemetry is stripped of raw code payloads unless explicitly configured otherwise.
C. Web & Application Usage Data
- Device & Network Information: IP address, browser type, and operating system.
- Usage Analytics: Pages visited, interaction with platform features, and session data to help us refine our minimalist, high-contrast interface.
2. How We Use Your Information
We process your data based on contractual necessity, legitimate business interests, and, where applicable, your consent, for the following purposes:
- Service Provision: To authenticate users, provide access to the Services, and execute code reasoning and verification tasks.
- Product Improvement: To analyze how developers interact with our tools to refine workflows and improve the accuracy of our logic detection algorithms.
- Security & Enforcement: To monitor for unauthorized access, enforce rate limits, and maintain the integrity of our infrastructure.
- Communication: To send critical service updates, security alerts, and relevant technical content.
3. AI Model Training & Code Privacy
We recognize the sensitivity of the codebases you analyze using Sudoviz. We maintain strict boundaries regarding proprietary data:
- Zero-Retention Code Scanning: By default, code payloads submitted to our reasoning units for analysis are processed in memory and immediately discarded after the analysis is returned to your environment. We do not store your raw source code at rest on our servers.
- No Unsanctioned Model Training: We do not use your proprietary code, proprietary business logic, or private vulnerability data to train, fine-tune, or improve our foundational AI models.
- Opt-In Telemetry: Any collection of generalized, anonymized code patterns for the purpose of improving our deterministic rulesets or agentic formal methods is strictly opt-in.
4. How We Share Your Information
We do not sell your personal data. We only share information under the following circumstances:
- Service Providers: With trusted infrastructure partners (e.g., cloud hosting, secure logging) who process data on our behalf under strict confidentiality agreements.
- Legal Compliance: When required by law, regulation, or legal process to protect the rights, property, or safety of Sudoviz, our users, or the public.
- Business Transfers: In connection with a merger, acquisition, or sale of assets, provided the acquiring entity adheres to privacy standards consistent with this policy.
5. Data Security
We implement rigorous technical and organizational measures grounded in first-principles security to protect your data. This includes encryption in transit (TLS 1.3) and at rest (AES-256), role-based access controls, and regular independent security audits. However, no system is entirely immune to entropy; we cannot guarantee absolute security but commit to industry-leading practices and transparent incident response.
6. International Data Transfers & Jurisdictional Rights
Sudoviz Inc. is a Delaware C Corporation. Your data may be transferred to, stored, and processed in the United States or other jurisdictions where our service providers operate. We utilize appropriate safeguards, such as standard contractual clauses, to ensure your data remains protected during international transfers.
Depending on your location, you may have specific rights regarding your personal data:
- California (CCPA/CPRA) & US State Laws:You have the “Right to Know” what categories of data we collect, the “Right to Delete,” and the right to opt-out of the sharing of data for cross-context behavioral advertising (though we do not engage in this practice).
- European Union & UK (GDPR): You have the right to access, rectify, erase, restrict processing, and port your data. You may also object to processing based on legitimate interests.
- Canada (PIPEDA): For Canadian users, you have the right to access the personal information we hold about you and request corrections.
To exercise any of these rights, please contact us using the details below.
7. Changes to This Policy
We may update this Privacy Policy as our technology and legal obligations evolve. We will notify you of material changes via email or prominent notice within the platform before the changes take effect.
8. Contact Us
If you have questions about this Privacy Policy, our data practices, or wish to exercise your privacy rights, please contact us:
Sudoviz Inc.Email: privacy@sudoviz.com