ProvaProva

Privacy Policy

Last updated: March 19, 2026

1. Introduction

Prova Trust, Inc. ("Prova," "we," "us") is committed to protecting your privacy. This Privacy Policy describes how we collect, use, and safeguard information when you use our verifiable AI infrastructure platform.

2. Information We Collect

We may collect the following types of information:

  • Account information: Email address, display name, and authentication tokens used to access the platform.
  • Delegated credentials: Login credentials you voluntarily delegate for data retrieval. These are encrypted in transit, processed exclusively within hardware-secured enclaves (Intel TDX), and provably destroyed after use.
  • Attestation metadata: Cryptographic hashes, timestamps, and verification records associated with processed requests. Raw source data is not persisted.
  • Usage data: Pages visited, features used, request timestamps, and device/browser information for analytics and service improvement.

3. How We Use Your Information

We use collected information to:

  • Provide, operate, and maintain the Service
  • Process credential delegations and generate attestation bundles
  • Improve and personalize the user experience
  • Communicate service updates and respond to support requests
  • Comply with legal obligations and enforce our Terms of Use

4. Data Security

We employ industry-leading security practices to protect your data. Delegated credentials are encrypted with P-256 ECDH + AES-256-GCM, decrypted only inside Intel TDX hardware-encrypted memory, and destroyed via zeroize-on-drop after processing. We do not store raw credentials or source data beyond the duration of a single request.

5. Data Sharing

We do not sell your personal information. We may share information with third parties only in the following circumstances:

  • With your explicit consent
  • To comply with legal obligations, court orders, or regulatory requirements
  • With service providers who assist in operating the platform, subject to confidentiality agreements
  • In connection with a merger, acquisition, or sale of assets (with prior notice)

6. Cookies & Analytics

We may use cookies and similar tracking technologies to collect usage data and improve the Service. You can control cookie preferences through your browser settings. Essential cookies required for platform functionality cannot be disabled.

7. Data Retention

Attestation metadata is retained for as long as necessary to provide verification services. Account information is retained while your account is active. You may request deletion of your account and associated data at any time by contacting us.

8. Your Rights

Depending on your jurisdiction, you may have the right to access, correct, delete, or port your personal data, as well as the right to object to or restrict certain processing. To exercise these rights, contact us at the address below.

9. Children's Privacy

The Service is not intended for individuals under the age of 18. We do not knowingly collect personal information from children.

10. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. We encourage you to review this page periodically.

11. Contact Us

If you have questions or concerns about this Privacy Policy, please contact us at privacy@provatrust.com.