HomeGuidesAPI ReferenceRelease notes
Log In
Guides

Data privacy

The privacy boundary between your VPC and the SUPERWISE® cloud

SUPERWISE® Sentinel is built around a strict privacy boundary between your environment and the SUPERWISE® cloud. Your raw prompts and responses are never sent to SUPERWISE® — only anonymous operational metadata is. Sensitive content your guardrails catch (secrets, PII, toxic text) is redacted at the edge before the request is forwarded to your upstream LLM provider.

Dynamic sync

Each Sentinel gateway opens a secure outbound connection to the control plane — it is never exposed to inbound traffic. On every heartbeat (every 60 seconds) it reports basic operational metadata and pulls down the latest guardrail configuration to enforce locally. For how heartbeats drive gateway lifecycle and states, see Deploy a gateway.

Telemetry is metadata only

Telemetry sent to the cloud is strictly limited to:

  • Volumetric counts (request volume, remediation counts)
  • Triggered guardrail violation events (which rule fired — never the content)
  • Proxy and upstream latency measurements

SUPERWISE® never sees your data

Your prompts, model responses, and system instructions are never transmitted to the SUPERWISE® cloud, and no transaction content is stored there. Requests are forwarded to your chosen upstream LLM provider — with sensitive content redacted at the edge first — while SUPERWISE® receives only the anonymous metadata described above.