The client's personal data is processed logically separately and protected against unauthorized access or connection with other data.
Systematic vulnerability scans are carried out regularly in order to identify and fix potential security gaps at an early stage. The review is carried out in accordance with OWASP guidelines and CVE checks.
Only authorized persons can access data processing systems and procedures. This is ensured by applying strong password policies, two-factor authentication, and monitoring access activity.
Sensitive data is encrypted and transmitted using AES-256 and is protected using TLS 1.3.
All operations are monitored and recorded in detailed audit logs, which allows them to be analyzed and reviewed at any time.
On request, nele.ai will redact sensitive personal data before transmission, where technically possible, and reinserts it after receiving the message.
All available AI models contractually guarantee that your data will not be used to train future models. Even with local, dedicated models, there is no training with your data.
You decide for yourself how long your chats and documents remain stored on our German servers. You can set the deletion time at any time by deleting the data.
Our knowledge databases are based on RAG, which prevents hallucinations through the selected AI model. If the AI doesn't have any information, it will display it. If information is available, it indicates its source.
If it is technically possible, we make it clear to the user on which basis an answer is generated, for example in our knowledge databases. In addition, we do not prune the chat history, but inform the user about it.
In accordance with Article 50, we commit ourselves to inform every person who interacts with our AI system in a timely and clear manner about the use of AI, its functions, possible human supervision, and decision makers.
Our authorization system ensures that employees cannot be evaluated. In addition, our authorization system allows you to set access rights to necessary information in order to follow the minimal principle.
In our AVV, we contractually regulate how we process and protect your data. Under point 6, you will find all technical organizational measures.
We work closely with external data protection officers to design and implement robust and effective privacy policies.
We have created a DPO to help your data protection officer evaluate our system. We would be happy to send them to you via e-mail.
Start your way — we offer flexible entry options to meet your individual needs.
Your question wasn't answered?
Don't hesitate to contact us