Poesius AI Logo

Data Handling

Learn how we handle your data with security, privacy, and compliance in mind.

Data Captured

Content Data

  • Slides shared with Poesius
  • Documents uploaded to Poesius (Excel, PDF, Word, images, etc.)
  • User prompts and instructions
  • Generated content and outputs

User Profile Data

  • Email address
  • Name
  • Company name
  • Role/job title
  • Other profile information provided during registration or usage

Data Persistence

  • Default retention period: 30 days
    • Primary purpose: Logs and audit trails
    • Can be reduced to 1 day upon customer request
  • Automatic deletion: All data permanently deleted after retention period

Storage Infrastructure

  • Cloud provider: Microsoft Azure
  • Default location: Europe West
  • Custom locations: Available for large dedicated contracts
    • Can be deployed in customer-preferred regions
    • Enterprise-specific data residency requirements supported

Data Security

  • Encryption at rest: Enabled by default on all stored data
  • Encryption in transit: SSL/TLS encryption for all data transfer between PowerPoint and Poesius backend
  • Access control: User-specific data isolation

AI Training Policy

  • Zero training on customer data: Slides and documents shared with Poesius are NEVER used to train or improve AI models
  • Data privacy guarantee: Customer content remains strictly confidential and is not shared with third parties
  • No cross-customer data exposure: Each customer's data is completely isolated

Data Processing with Third-Party AI Providers

AI Service Providers

  • Current providers: Azure OpenAI, Google Gemini, and other leading LLM providers
  • Provider rotation: Poesius regularly changes AI providers to optimize quality and performance
  • Processing regions: May vary depending on AI provider (not limited to Europe West)

Third-Party Processing Guarantees

  • No data persistence: Customer data is NEVER stored or persisted by third-party AI providers
  • No training usage: Data processed through third-party AI services is NEVER used to train their models
  • Ephemeral processing: Data is only transmitted for real-time processing and immediately discarded
  • Contractual protections: All AI providers operate under strict data processing agreements prohibiting data retention and training use

Compliance Considerations

  • Audit trail capability (30-day default retention)
  • Configurable retention policies for regulatory requirements

Data Processing

  • Processing location: Same region as data storage for Poesius infrastructure; varies for third-party AI processing
  • Third-party AI providers: Customer data may be processed through multiple AI services with equivalent security standards
  • Data minimization: Only necessary data is captured and retained