Privacy Policy

Last Updated: March 13, 2026

1. Data Sovereignty

ReguLens AI is built with a "Privacy by Design" philosophy. Unlike traditional SaaS tools, our agentic scanner operates within your own infrastructure (Docker/Local). We do not transmit your cloud credentials or sensitive metadata to our central servers.

2. Information We Access

To provide compliance analysis, the application interacts with:

  • Cloud Metadata: Public/Private status of S3 and GCP buckets.
  • IAM Configurations: Identity roles and permission sets.
  • Inference Data: Security logs processed by our local ONNX engine.

3. Report Generation

All reports (PDF and TXT) are generated locally on your machine. You maintain 100% ownership and control over these audit artifacts. ReguLens AI does not maintain copies of your security reports.

4. Compliance Standards

Our scanning logic is mapped to international standards including GDPR, CCPA, and SOC2. Our internal processes comply with these regulations to ensure that even the metadata we use for licensing is protected.