We understand that many clients have valid concerns about the use of AI tools, in particular what guardrails are in place to protect the confidentiality of client data.  

Therefore, we require that all the AI tools we employ:
- maintain strict confidentiality over client data through appropriate technical and organizational measures that prevent unauthorized access by any third parties;
- never use, store, or process client data to train large language models (LLMs) or for any other purpose beyond providing the immediate service; and
- implement appropriate security measures in accordance with industry standards and applicable law.

These AI tools and their providers explicitly acknowledge and agree that they also have no ownership rights over any data we input.

In particular:
- The tools we use implement zero data retention (ZDR) protocols, meaning that all customer data is: (i) processed only in volatile memory during the immediate request; (ii) automatically and permanently deleted immediately after request completion; and (iii) verified through regular third-party audits to ensure no inadvertent data persistence occurs.
- We only use tools that maintain robust, industry-standard encryption protocols for data both in transit and at rest, protecting sensitive information from unauthorized access.
- We also require commitments to comply with applicable data privacy regulations and industry standards for protecting the security, confidentiality, and privacy of client information, including but not limited to SOC 2 Type II certification, GDPR compliance, and California Consumer Privacy Act (CCPA) compliance.