Privacy Policy

Admissible AI Inc., a Delaware corporation (“Admissible AI”, “we”, “us”, or “our”) provides an AI platform that delivers regulated control architectures for large language models (“LLMs”) and AI agent systems. This Privacy Policy explains how we collect, use, disclose, and protect information when you access or use our website located at https://www.admissible.io and all related software, applications, tools, APIs, and services provided by Admissible AI (the “Services”). This Privacy Policy is available at https://admissible.io/privacy. Specifically, this Privacy Policy explains:

• how we collect information about you that can be used alone or in combination to identify you (“Personal Information”),
• how we use your Personal Information, and
• how we protect your privacy.

By accessing and using the Services, you acknowledge that you have read this Privacy Policy and agree to its terms.

1. Privacy Principles

A. Personal Information We Collect

We take your privacy seriously. Consistent with applicable law, we:

• collect only Personal Information necessary or relevant to providing the Services;
• use legitimate and proportional methods to collect Personal Information;
• take reasonable steps to ensure Personal Information we act upon is accurate and timely;
• limit internal access to authorized personnel trained to handle Personal Information;
• use industry-standard security measures to protect Personal Information;
• do not sell Personal Information; and
• share Personal Information externally only as outlined in this Privacy Policy and as permitted by law.

We obtain most Personal Information directly from you, including when you create an account or use the Services. Depending on how you access and use the Services, we may collect or generate the following categories of information:

• Account and contact information, including your first and last name, company name (if applicable), email address, account status, and access tier;
• Device and network information, including IP address, country and other access signals, and user-agent, device, and browser information;
• Acceptance records, including records of your acceptance of the Terms of Service, this Privacy Policy, and U.S. eligibility, and, where applicable, records of acceptance relating to invite-based or managed access;
• Security and integrity events, including Cloudflare Turnstile, other security, and rate-limit events;
• Inputs, which are the prompts, queries, and other content you enter or submit through the Services (collectively, “Inputs,” and as further defined in our Terms of Service);
• “Outputs” (as defined in our Terms of Service) and runtime data, including Outputs generated from your Inputs, runtime request metadata, runtime trace events, authority decisions, denials, deferrals, errors, and usage-limit and friction events;
• Token and credential data, including token and credential metadata and lifecycle events; and
• Operational and audit logs, including commit attempts and records, operator and administrator actions, and security and access logs.

You retain ownership of your Inputs. By using the Services, you grant Admissible AI a non-exclusive, worldwide, royalty-free license to host, store, process, and use your Inputs as necessary to: (a) provide the Services; (b) improve the Services and platform performance using aggregated or de-identified data; and (c) comply with legal obligations. Admissible AI will not sell your Inputs and will only use them in accordance with this Privacy Policy and the Terms of Service.

Subject to the Terms of Service, you may use the Outputs generated from your Inputs for your internal evaluation purposes. Admissible AI retains all right, title, and interest in and to the platform, runtime, software, APIs, SDKs, user interface, documentation, control architecture, policy logic, telemetry systems, demonstration frameworks, templates, aggregated and de-identified analytics, and any feedback and improvements. You may not use Outputs, telemetry, benchmark results, runtime behavior, or other Services materials to reverse engineer Admissible AI, competitively benchmark it, train or improve competing systems, build competing products, or bypass access controls. All rights in the Services not expressly granted to you are reserved by Admissible AI.

We may also automatically collect log files and similar technical data, and we may use cookies, web beacons, and similar technologies (“Tracking Tools”) to operate and secure the Services.

The hosted runtime does not presently process user runtime requests through third-party AI model providers. The Services rely on ordinary service providers, such as hosting, email, CAPTCHA and security, logging and observability, and infrastructure providers. Admissible AI may in the future integrate with third-party AI infrastructure providers or other third-party services. If such integrations are enabled, your information may be processed by those providers as necessary to provide the Services and as described in this Privacy Policy.

B. How We Use Personal Information

We use your information to:

• provide, operate, secure, debug, analyze, and improve the Services, including operating the regulated AI control architecture platform, running demonstration environments comparing regulated versus unregulated AI agent behavior, processing prompts and queries, and generating Outputs for evaluation and informational purposes only;
• create and manage user accounts;
• verify eligibility, including age, U.S. residence, and U.S. location;
• administer access control, including invite-based and managed access where applicable;
• prevent, detect, and respond to fraud, abuse, and security threats;
• maintain legal and audit records.

We use interaction and runtime data for platform performance, debugging, analytics, security, and abuse prevention. This data is used solely in connection with the Services and is not used to build profiles for purposes unrelated to the Services. We do not use your Inputs or Outputs for advertising, and we will not engage in cross-context behavioral advertising using your Inputs or Outputs.

Our AI agent features may take automated actions within the Services, such as logging agent activity, recording demonstration outputs, and organizing session data. These automated actions are subject to the same data-handling practices described in this Privacy Policy.

Note: Outputs are generated by automated AI systems and may be incomplete, inaccurate, or otherwise inappropriate for your specific circumstances. You are solely responsible for reviewing and verifying the accuracy, completeness, and appropriateness of all Outputs before relying on them for any purpose. Admissible AI does not provide legal, tax, accounting, financial, or medical advice.

C. Restricted Data

You must not submit to the Services any sensitive or regulated data unless separately authorized by Admissible AI in writing, including: (a) protected health information or other health data; (b) payment card data; (c) government-issued identification numbers; (d) credentials, secrets, API keys, private keys, passwords, or tokens; (e) children’s data or data relating to any person under 18; (f) regulated financial data; (g) confidential enterprise data; and (h) any data you are not authorized to submit. You are solely responsible for any consequences arising from your submission of restricted data in violation of this provision, and Admissible AI disclaims all liability related thereto.

D. Sharing of Personal Information

Your use of the Services does not create any fiduciary, professional, or advisor-client relationship between you and Admissible AI. Admissible AI does not act as your advisor, attorney, accountant, financial advisor, or representative and does not owe you any fiduciary duty. Accordingly, any sharing of Personal Information under this Section 1D is not subject to any fiduciary or professional duty of confidentiality.

We may share Personal Information only with:

• Service Providers. Including hosting providers, cloud infrastructure vendors, email providers, CAPTCHA and security providers, logging and observability providers, and data-security and backup vendors. These providers may access Personal Information only to perform services on our behalf. We use third-party authentication providers to manage user login security, and authentication information is processed according to the applicable provider’s privacy policy.
• Future Third-Party Integrations. As described in Section 1A above, if Admissible AI integrates with third-party AI infrastructure providers or other third-party services in the future, information may be shared with those providers as necessary to provide the Services.
• Corporate Transactions. In the event of a merger, acquisition, reorganization, bankruptcy, or sale of all or a portion of our assets, Personal Information may be transferred to the acquiring entity or successor. The acquiring entity's use of your Personal Information will be subject to applicable law and the acquiring entity's own privacy policy, which may differ from this Privacy Policy.
• Legal and Compliance. We may disclose Personal Information to government agencies, courts, for purposes of legal process, and to law-enforcement authorities. Where legally permitted, we may use reasonable efforts to notify you before producing information in response to a subpoena or legal request, but we are not obligated to do so.
• Aggregated and De-Identified Information. We may use or share aggregated, de-identified data that does not identify you to analyze usage trends.

E. Retention, Confidentiality, and Security

We use reasonable administrative, technical, and physical safeguards designed to protect information, including HTTPS/TLS for public network traffic and provider-managed encryption at rest where available. We retain your account data for up to one (1) year following expiration or termination of your access, unless a longer period is required by applicable law. We may retain interaction logs and usage records beyond this period in aggregated or de-identified form for the purposes described in Section 1B above; we do not use such retained data in personally identifiable form and do not share it with third parties for AI training purposes. If a security breach occurs that affects your Personal Information, we will notify you via email or through the Services to the extent required by applicable law.

Access tokens and similar credentials are displayed once at the time of creation and are not retained by Admissible AI in recoverable form. We may retain token metadata, fingerprints, and the last four characters of a token for account, security, and audit purposes.

Admissible AI is not a data-backup service. When you delete records within the Services without deleting your entire account, the records may be soft deleted and retained for up to thirty (30) days to preserve data integrity before being permanently removed. Soft-deleted data is permanently removed when your account is deleted. If you delete your account, we use commercially reasonable efforts to delete all of your Personal Information from our Services, except that we may retain: (a) data in archived backups until the backups are overwritten in the ordinary course; (b) aggregated or de-identified data that no longer identifies you; and (c) data we are required to retain by applicable law, regulation, or legal process. You should not rely on the Services as your sole repository for important data.

F. Eligibility and Age Restriction

We do not knowingly collect Personal Information from persons under 18, and you must not submit children's data through the Services. If we learn that we have collected Personal Information from a person under 18, we will delete that information promptly and terminate any such account upon discovery. If you believe we have inadvertently collected information from someone under 18, please contact us as described in Section 6.

2. Additional Relevant Provisions and Laws

Admissible AI is a Delaware corporation. The Services are intended for U.S. users only. Persons located outside the United States may not use the Services without Admissible AI’s express prior written permission. If you access the Services from outside the U.S., you agree that your information will be transferred to and processed in the United States.

California Residents

If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), including: (a) the right to know what Personal Information we collect, use, disclose, or share about you; (b) the right to delete Personal Information we have collected from you, subject to certain exceptions; (c) the right to correct inaccurate Personal Information we maintain about you; (d) the right to opt out of the sale or sharing of your Personal Information, which we do not engage in as stated in Section 1A; (e) the right to limit our use and disclosure of sensitive Personal Information; and (f) the right not to be discriminated against for exercising your privacy rights. To submit a request to exercise any of these rights, please contact us as described in Section 6. We will verify your identity before responding to your request and will respond within the timeframe required by applicable law.

International Visitors

To the extent Admissible AI has granted express written permission for your use of the Services from outside the United States, we may transfer your data, including Personal Information, from the U.S. to other countries or regions in connection with storage and processing of data, fulfilling your requests, and operating the Services. By providing any information, including Personal Information, to us, you consent to such transfer, storage, and processing.

3. Your Privacy Choices

You may opt out of marketing emails at any time by following the unsubscribe instructions in those emails or by contacting us as described in Section 6. You may manage cookies via your browser settings, though doing so may affect the functionality of the Services. You may also request access to, correction of, or deletion of your Personal Information (where legally applicable) by contacting us. We may require identity verification before responding to such requests.

4. Changes to this Privacy Policy

We may modify this Privacy Policy from time to time. If changes are material, as determined by Admissible AI in its reasonable discretion, we will provide at least thirty (30) days’ advance notice by email or through the Services and, where required by applicable law, obtain your affirmative consent before applying such changes to your Personal Information. This thirty (30) day advance notice requirement applies specifically to changes affecting Personal Information handling and supplements the general notice terms in the Terms of Service. Your continued use of the Services after the effective date of any non-material modifications constitutes acceptance of the revised Privacy Policy. If you do not agree to the modified Privacy Policy, your sole remedy is to stop using the Services.

5. Governing Law

This Privacy Policy is governed by the laws of the State of Delaware, without regard to its conflict of laws principles, consistent with the governing law provision in the Terms of Service.

6. Contact Us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us at support@admissible.io.

Last Updated: May 2026