Prophetic AI is committed to protecting your data. We operate self-hosted infrastructure in co-located datacenters, collect only network telemetry — never payload content — and give you full control over your data retention.
Prophet collects Network Telemetry — the shape and behavior of network communications, not the content. Our Collectors extract metadata like connection timing, byte distributions, protocol fields, and behavioral patterns.
✓ Session behavioral data (byte counts, timing, connection density)
✓ Protocol metadata (DNS, TLS, HTTP headers, certificates)
✓ Detection results, anomaly scores, entity classifications
✓ Flow records and infrastructure mapping data
✗ Packet payload or content of communications
✗ Email bodies, chat messages, or file contents
✗ Passwords, credentials, or authentication tokens
✗ Application-layer data beyond protocol metadata
Prophet is an AI-native platform. Our detection models are trained via federated learning across diverse network environments. Here is how we protect your data in this process:
Only learned model parameters and anonymized behavioral representations are shared across customer environments.
Raw Network Telemetry is never shared between customers.
Federated learning consent is explicitly included in the EULA — no hidden data sharing.
Detection models may produce false positives and false negatives — Prophet is one component of a comprehensive security strategy.
TLS 1.3 for all data in transit
AES-256 encryption at rest
End-to-end encryption from Collector to Prophet Platform
Self-hosted in co-located datacenters
No public cloud dependency for data processing
Physical security with biometric access controls
Least-privilege access model
Multi-factor authentication required
Role-based access with audit logging
Continuous security monitoring
72-hour breach notification commitment
Incident response procedures with post-mortem process
Prophetic AI complies with data protection laws across all jurisdictions where our customers operate. Our Data Processing Agreement covers international transfers with appropriate safeguards.
European Union
GDPR
Compliant
Standard Contractual Clauses for international transfers
United Kingdom
UK GDPR / DPA 2018
Compliant
International Data Transfer Addendum (IDTA)
United States
CCPA / CPRA
Compliant
California consumer privacy rights honored
Switzerland
FADP
Compliant
Swiss data protection requirements met
Canada
PIPEDA
Compliant
Personal information protection compliance
Australia
Privacy Act 1988
Compliant
Australian privacy principles observed
All legal documents governing the Prophet platform. These are the documents users accept when requesting access.
Terms governing your use of the Prophet platform, including data processing rights, service levels, and federated learning consent.
Read document →How we collect, use, and protect information from our website visitors and Prophet platform customers.
Read document →GDPR-compliant DPA covering our obligations as a data processor, sub-processors, breach notification, and international transfers.
Read document →Website terms of use, intellectual property, disclaimers, and governing law.
Read document →Technical and organizational measures we implement to protect data, including access controls, encryption, and incident management.
Read document →We maintain a current list of sub-processors who may process data on our behalf. Customers are notified 14 days before any new sub-processor is granted access to data.
View current sub-processors →For security disclosures, privacy inquiries, or compliance questions, contact our team.
Prophetic AI Corporation · 254 Chapman Rd, Ste 208 #903, Newark, Delaware 19702