Privacy Policy
ProvenanceCode / Agent OS — operated by KDDLC AI Solutions
Last updated: 26 April 2026
Contact: hello@provenancecode.com
1. Who we are
ProvenanceCode is an AI execution governance product developed and operated by KDDLC AI Solutions (“we”, “us”, “our”). Our registered address and data controller contact is available at hello@provenancecode.com. ProvenanceCode provides a runtime governance layer — Agent OS — that intercepts, evaluates, and logs AI agent decisions before they reach production infrastructure.
2. Scope of this policy
This policy applies to information we collect when you visit provenancecode.com, submit an early-access request, or communicate with us. It does not govern the processing of data within customer-deployed Agent OS instances — that is addressed in your service agreement and the Agent OS data processing documentation.
3. Data we collect and why
| Category | Data | Legal basis (GDPR Art. 6) | Purpose |
|---|---|---|---|
| Contact form | Name, work email, company name, message, request type | Art. 6(1)(b) — pre-contractual steps; Art. 6(1)(f) — legitimate interest | Respond to early-access requests; qualify potential customers |
| Server logs | IP address, browser user-agent, pages visited, timestamp | Art. 6(1)(f) — legitimate interest | Security, abuse prevention, analytics |
| Email communications | Email address, message content | Art. 6(1)(b) — pre-contractual; Art. 6(1)(f) — legitimate interest | Conduct business correspondence |
We do not use cookies beyond those strictly necessary for the website to function. We do not run advertising networks, retargeting pixels, or behavioural tracking.
4. How we use your data
- To respond to your early-access or contact request.
- To send you onboarding information and AWS Marketplace access instructions if you are accepted.
- To send relevant product updates, if you have indicated interest and have not opted out. You can opt out at any time by emailing hello@provenancecode.com.
- To maintain security and prevent abuse of our systems.
We do not sell, rent, or share your personal data with third parties for their own marketing purposes.
5. Data sharing and processors
We share data only where necessary to operate our services:
- AWS (Amazon Web Services) — hosting infrastructure. Data may be processed in the EU or US. AWS participates in the EU–US Data Privacy Framework.
- Email service provider — for transactional email and follow-up communications.
- Legal or regulatory authorities — where required by law or to protect our legal rights.
All third-party processors are bound by data processing agreements meeting GDPR Article 28 requirements.
6. International transfers
If you are located in the European Economic Area (EEA), your data may be transferred to and processed in countries outside the EEA, including the United States. We ensure such transfers comply with Chapter V of GDPR, using Standard Contractual Clauses (SCCs) where applicable.
7. Your rights under GDPR
If you are located in the EEA or UK, you have the following rights:
- Right of access — request a copy of the personal data we hold about you.
- Right to rectification — request correction of inaccurate data.
- Right to erasure — request deletion of your data where we have no overriding legal basis to retain it.
- Right to restriction — request that we limit processing of your data.
- Right to data portability — receive your data in a machine-readable format where processing is based on consent or contract.
- Right to object — object to processing based on legitimate interest.
- Right to lodge a complaint — with your national data protection authority (e.g. the ICO in the UK, or your local EU supervisory authority).
To exercise any right, contact us at hello@provenancecode.com. We will respond within 30 days.
8. Retention
Contact form submissions are retained for as long as necessary to manage the business relationship, and for up to 3 years after last contact. Server logs are retained for up to 90 days. You may request deletion at any time.
9. Children
Our services are not directed to individuals under 18. We do not knowingly collect data from minors.
10. Changes to this policy
We may update this policy. Material changes will be communicated by updating the “last updated” date at the top of this page. Continued use of the site after changes constitutes acceptance.
11. Contact
Data controller: KDDLC AI Solutions
Email: hello@provenancecode.com
Website: provenancecode.com