Cookies help us enhance your experience and improve our website. Learn more about cookies

Sheathe logo sheathe

Privacy Policy

Effective Date: May 14, 2025

Introduction

This Privacy Policy describes how Sheathe.ai (“we,” “us,” or “our”) collects, uses, and discloses personal information via our public website (https://www.sheathe.ai). We are committed to safeguarding your privacy and providing transparency about how we handle data.


Sheathe.ai offers software that runs on your infrastructure, enabling organizations to leverage large language models (LLMs) while maintaining strict privacy controls. Our solution ensures that sensitive data is masked before any external API interactions occur.


This Privacy Policy applies solely to information collected through our website and direct communications with us. It does not cover data processed by the Sheathe.ai software itself, as that software is fully hosted and managed by our customers.


This Policy covers only:

  • Data collected through our website (such as signups and payments)
  • Communications with us (including support and license management)

Data processed by your Sheathe.ai deployment on your infrastructure is controlled only by you, not by Sheathe.ai.

Controller Information

Sheathe.ai
Email: legal@sheathe.ai
Website: https://www.sheathe.ai

Important Note on Software Running on Your Infrastructure

Sheathe.ai’s primary offering is a self-hosted privacy layer, deployed within the customer’s infrastructure. Once deployed:

  • Sheathe.ai does not have access to queries, prompts, analytics, or integration data.
  • All data routing, masking, storage, and integration logic operates within the customer environment.
  • No data is transmitted to or processed by Sheathe.ai servers.
  • Any communication with external LLM APIs (such as OpenAI or Anthropic) is configured and managed by the customer.

The customer is responsible for compliance with privacy laws and data protection obligations when configuring and using the software.

Information We Collect (Website Only)

We collect only data necessary to operate our website and support commercial activities.

  • Name
  • Email address
  • Payment information (processed by third-party providers such as Stripe)
  • IP address
  • Browser type
  • Device identifiers
  • Pages visited and time spent

This information is used for purposes such as analytics, security monitoring, and website optimization.

We use essential and analytics cookies on our website. Detailed information can be found in our Cookie Notice.

Third-Party Services

We may share limited personal data (such as contact and purchase information) with third-party service providers that help us operate the website. These may include:

  • Payment processors (such as Stripe)
  • Email service providers (such as Mailgun, Postmark)
  • Analytics tools (such as Plausible, if used)

All providers are required to protect your data and comply with applicable data protection regulations.

We do not share data from your self-hosted deployments with third parties, as we do not have access to it.

Integrations & External APIs (Software Disclaimer)

Your deployment of the Sheathe.ai platform may be configured to:

  • Connect to external LLM APIs (such as OpenAI, Anthropic, DeepSeek)
  • Integrate with internal tools (including Slack, Confluence, CRMs, and others)

These integrations are configured and managed entirely by the customer. Sheathe.ai does not observe or log any data sent through these integrations or APIs.

Customers are responsible for ensuring third-party LLM APIs and integrations are used in compliance with their internal policies and legal obligations. Proper masking or pseudonymization should be applied where needed.

We recommend reviewing the privacy policies and data handling terms of all third-party LLM and integration providers you use.

Your Rights

If you are located in the European Economic Area (EEA), United Kingdom, or California, you have certain rights related to your personal data collected via our website. These rights may include:

  • The right to access your data
  • The right to correct inaccurate data
  • The right to delete or restrict processing of data
  • The right to data portability
  • The right to object to certain types of processing

To exercise your rights, you may contact us at legal@sheathe.ai.

These rights do not extend to data processed by your self-hosted instance, as Sheathe.ai does not control or process that data.

Security

We use industry-standard security measures to protect the personal data we collect on our website. These include encryption, access controls, and secure software development practices.

Please note that no method of transmission over the Internet or electronic storage is completely secure. We encourage all customers to follow best practices for securing their self-hosted deployments.

Retention of Data

We retain your website data:

  • For as long as your account or license is active
  • As required by legal or accounting obligations

You may request deletion of your account or your personal data at any time by contacting legal@sheathe.ai.

Children’s Privacy

Our website and services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that such data has been inadvertently collected, we will promptly delete it.

Changes to This Policy

We may update this Privacy Policy from time to time. All changes will be posted on this page, and we will notify users if material changes are made. We encourage you to review this Privacy Policy periodically to stay informed about our data protection practices.

Contact Us

For questions, concerns, or requests related to your data, please contact:
Email: legal@sheathe.ai
Website: https://www.sheathe.ai