Privacy Policy

Last updated: 2026

1. Overview

MandateMind AI (“MandateMind”, “we”, “our”) is committed to protecting your privacy. This Privacy Policy explains what information we collect, how we use it, and the choices you have regarding your data.

2. Information We Collect

We collect the following categories of information:

3. How We Use Information

We use collected information to:

4. AI Processing & Model Usage

MandateMind uses AI models to analyze evidence, generate summaries, identify gaps, and produce readiness insights. Your data is processed securely and is never used to train public AI models.

5. Evidence Storage & Retention

Evidence uploaded to MandateMind is stored securely in encrypted storage. To manage performance and cost:

6. Fair‑Use Limits

All subscription plans include fair‑use limits for AI processing and evidence storage. Excessive usage may result in:

Fair‑use thresholds are described in the Acceptable Use Policy.

7. Data Protection & Security

MandateMind uses industry‑standard security controls to protect your data:

8. Subprocessors

We use trusted subprocessors to operate the platform, including:

Subprocessors only receive the minimum data required to perform their function.

9. Sharing of Information

We do not sell customer data. We may share limited information with subprocessors or when required by law. Evidence is never shared with third parties for marketing or training purposes.

10. Your Rights

You may request:

11. Multi‑Tenant & MSP Environments

For vCISO/MSP customers, each client environment is isolated. Evidence and AI outputs are never shared across client tenants unless explicitly configured by the customer.

12. Changes to This Policy

We may update this Privacy Policy periodically. Continued use of the platform constitutes acceptance of the latest version.