Legal & Compliance

Privacy Policy

Last Updated: March 20, 2026

Introduction

SupraWall ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard data when you use our AI agent security platform, including our MCP plugins, SDKs, and dashboard.

Data Collection

To provide security and compliance services for AI agents, we collect the following types of information:

  • Account Information: Name, email, and organization details provided during signup.
  • Agent Telemetry: Tool names, metadata, and risk scores generated during security evaluations.
  • Audit Logs: Historical records of tool executions and policy decisions for compliance reporting.
  • Security Credentials: API keys and vault tokens (encrypted at rest, zero-knowledge where applicable).

How We Use Data

We process data primarily to enforce security policies and generate compliance documentation. This includes:

  • Real-time evaluation of tool calls against user-defined policies.
  • Generating EU AI Act-compliant evidence logs (Art. 12 & 14).
  • Detecting anomalous agent behavior and infinite loops.
  • Providing human-in-the-loop approval workflows.

Data Retention & Security

We implement industry-standard security measures, including AES-256 encryption for secrets at rest and TLS 1.3 for data in transit. Retention periods depend on your subscription tier (up to 90 days for standard logs, custom for Enterprise).

Back to Home