§ Lawful · Privacy Policy · v1.0 · Effective 2026-05-21
Privacy Policy
Provenio is operated by Mildo Inc. (밀도 주식회사), registered in the Republic of Korea. This Privacy Policy applies to provenio.art, the Provenio MCP service, and any institutional or BYOK deployment unless overridden by a separate Data Processing Agreement.
1. Data we collect
- Account data — email, organization name, role, billing identifiers (via Lemon Squeezy).
- Usage logs — query payloads, tool calls, response latencies, error envelopes. Free-tier IPs are hashed with a daily-rotated salt; paid-tier identifiers are SHA-256 hashes of license keys.
- BYOK metadata — only the masked first/last 2 characters of any BYOK token are logged for audit. Token bodies are never persisted.
- Webhook events — Lemon Squeezy subscription lifecycle events for billing reconciliation.
2. Legal bases (GDPR Art. 6)
- Contract performance — providing the Provenio service to authenticated users.
- Legitimate interest — abuse prevention, rate-limit enforcement, security monitoring.
- Consent — marketing communications (opt-in only).
- Legal obligation — Korean PIPA, EU GDPR, and applicable tax record retention.
3. Data residency
Primary processing is performed in iad1 (US-East) via Vercel. Institutional-tier clients may elect EU (fra1) or CH (zrh1) hosting under a signed Data Processing Agreement. On-premise air-gapped deployment is available — queries never leave the client jurisdiction.
4. Retention
- Query logs — 24 months for paid tiers (matches audit-trail SLA), 30 days for free tier.
- Webhook events — 7 years (tax/audit retention under Korean Commercial Code Art. 33).
- Account data — duration of contract + 5 years.
5. Sub-processors
- Vercel Inc. — hosting, edge, analytics
- Neon Inc. — Postgres data store
- Lemon Squeezy / Stripe — billing
- Anthropic PBC, OpenAI — model providers for client-initiated retrieval (queries pass through but are not stored by these providers under their Zero Retention agreements)
6. Your rights
Under GDPR / PIPA / CCPA, you may request access, rectification, erasure, portability, or restriction of your personal data. DSAR turnaround is 30 days (free tier) or 7 days (Institutional tier). Contact privacy@provenio.art.
7. Breach notification
Personal-data breaches are notified to affected users and to the Korean PIPC within 72 hours of detection, per PIPA Art. 34. Institutional clients are notified within 24 hours under their DPA.
8. Contact
Data Protection Officer (DPO): dpo@provenio.art
Mildo Inc., 32-37 Sangju-si, Gyeongbuk, Republic of Korea