Data Processing

Data storage and security

Scalign processes and stores customer data in data centers located in Europe. All data is encrypted in transit and at rest. (Source: https://neon.com/docs/security/security-overview)

Integration data processing

Scalign can connect to third party customer data sources through integrations. The data made available to Scalign through these integrations may be:

• temporarily stored on our servers to improve performance (caching).
• temporarily stored in logs used for debugging, monitoring, and traceability purposes.
• used as context for large language models to enable text processing features including summarization and key information extraction. Our LLM providers, OpenAI, Anthropic and Perplexity may store the data sent through their API temporarily for abuse detection purposes. No customer data will be used to train or improve their models. (Source: https://platform.openai.com/docs/guides/your-data, https://privacy.anthropic.com/en/articles/7996885-how-do-you-use-personal-data-in-model-training, and https://www.perplexity.ai/help-center/en/articles/10354963-are-third-party-model-providers-training-on-my-dat)

Data deletion

Customers can request deletion of their data at any time.

Access control

Data access internally follows the principle of least privilege, meaning that the only Scalign employees with access to customer data have a legitimate reason for it. For example, some developers need access to the production database for maintenance and will therefore have access to customer data.

Processing purpose

Processing is performed on behalf of the customer and in accordance with their instructions, as described in the DPA.