Data privacy
The privacy boundary between your VPC and the SUPERWISE® cloud
SUPERWISE® Sentinel is built around a strict privacy boundary between your environment and the SUPERWISE® cloud. Your raw prompts and responses are never sent to SUPERWISE® — only anonymous operational metadata is. Sensitive content your guardrails catch (secrets, PII, toxic text) is redacted at the edge before the request is forwarded to your upstream LLM provider.
Dynamic sync
Each Sentinel gateway opens a secure outbound connection to the control plane — it is never exposed to inbound traffic. On every heartbeat (every 60 seconds) it reports basic operational metadata and pulls down the latest guardrail configuration to enforce locally. For how heartbeats drive gateway lifecycle and states, see Deploy a gateway.
Telemetry is metadata only
Telemetry sent to the cloud is strictly limited to:
- Volumetric counts (request volume, remediation counts)
- Triggered guardrail violation events (which rule fired — never the content)
- Proxy and upstream latency measurements
SUPERWISE® never sees your data
Your prompts, model responses, and system instructions are never transmitted to the SUPERWISE® cloud, and no transaction content is stored there. Requests are forwarded to your chosen upstream LLM provider — with sensitive content redacted at the edge first — while SUPERWISE® receives only the anonymous metadata described above.
