Privacy Policy

AskProso ("Proso," "we," "us," or "our") operates the AskProso enterprise AI platform. This Privacy Policy outlines our commitment to data sovereignty and security for our enterprise partners.

Unlike consumer AI tools, AskProso is built for business. Our architecture prioritizes private environments and organizational control.

We collect the following categories of information:

• Identity & Access: Authentication is managed via Microsoft Entra ID (formerly Azure AD). We collect name, email, and unique identifiers provided by your organization's identity provider.
• Usage Analytics: Metadata including timestamps, feature usage, and token consumption to manage billing and resource allocation.
• Conversation Data: The inputs (prompts) and outputs (completions) processed by the system. This remains the property of the customer organization.
• Technical Metadata: IP addresses and device identifiers used for security auditing and Microsoft Entra compliance.

Proso adheres to a strict Zero-Training Policy:

• Your data is never used to train, retrain, or fine-tune foundation models (such as GPT-4, Claude, or Gemini).
• Data from one organization is logically isolated and is never used to inform or improve the experience for other organizations.

AskProso is hosted within a Private Azure Cloud Environment. This ensures that data remains within a controlled perimeter protected by enterprise-grade encryption (AES-256 at rest and TLS 1.2+ in transit).

Access to the platform is restricted via Microsoft Entra, ensuring your organization’s existing security policies (MFA, Conditional Access) are enforced.

We utilize API-based access to Large Language Models (LLMs). We prioritize enterprise-tier APIs (such as Azure OpenAI) where the provider contractually guarantees that submitted data is not used for model training.

Administrators can view and manage which providers are active for their tenant.

The "As-Is" Nature of AI: AskProso provides access to generative AI models. You acknowledge that AI-generated content may occasionally be inaccurate, incomplete, or biased ("hallucinations").

Proso shall not be held liable for any decisions made, actions taken, or damages incurred based on the output generated by the LLMs. Users should verify critically important information through independent sources.

Data is retained only as long as necessary to provide the service or as specified in your enterprise agreement. Upon termination of service, organization-wide data is purged from our active databases within 30 days.

For security audits, Data Processing Agreements (DPA), or privacy inquiries: