Privacy tiers.
Every query you submit is assigned a privacy tier that determines which providers are eligible to process it. Higher tiers add stronger isolation and accountability guarantees.
Tier 1 — Public
Any registered provider can process your query. Prompts and responses are encrypted in transit but the provider sees the plaintext while generating the answer. Best for non-sensitive workloads where cost and latency matter most.
Tier 2 — Vetted
Only providers that have completed identity verification and signed a data-processing agreement are eligible. This tier adds contractual accountability on top of the baseline encryption, making it suitable for business data that is not subject to regulatory controls.
Tier 3 — Confidential
Queries are routed exclusively to providers running inside a Trusted Execution Environment (TEE) with remote attestation. The platform verifies the TEE attestation report before releasing the decryption key, so even the hardware operator cannot observe plaintext. Required for regulated data such as PII, PHI, or financial records.
Tier 4 — Managed
Platform-operated infrastructure with the same confidential-compute guarantees as Tier 3, plus dedicated capacity, SLA-backed uptime, and end-to-end audit logging. Designed for enterprise customers who need contractual guarantees alongside technical controls.