Privacy & data handling

This page is a casual statement of how Viktora Threshold handles your data in this pilot. It is not a contract; if your organization needs a formal Data Processing Agreement, contact your Viktora Threshold champion to start that conversation.

Data at rest

Your captured documents live on this tenant's dedicated server disk (a DigitalOcean Volume). Storage is encrypted at rest by the hosting provider's standard mechanism. Backups are taken nightly via the same provider's snapshot facility.

No model training on your data

We do not use the contents of your tenant to train any machine-learning models — ours, an upstream LLM vendor's, or otherwise. LLM calls used for synthesis and judgment are made with vendor settings that disable training feedback.

Per-tenant isolation

Each pilot organization runs on its own server (one droplet per tenant). There is no shared database or shared filesystem with any other tenant. Your captures are visible only to people who can authenticate into this specific tenant.

Deletion on written request

Your champion can request full tenant deletion at any time. On request, we destroy the droplet and detach the storage volume; backup snapshots are retained for up to 30 days for accidental-deletion recovery, then purged.

No third-party sharing without consent

Viktora Threshold does not share, sell, or syndicate your tenant's data with any third party. The LLM vendor receives only the specific text we send to generate a response and does not retain it beyond the request lifecycle.

Authentication

We use single-use magic links for sign-in (no passwords). Sessions persist for 14 days with a sliding-window extension; signing out destroys the session immediately. Cookies are marked HttpOnly and Secure to limit exposure.