Securityhow we handle your data

Pipe agent data without leaking it.

The hard part of agent analytics is the data — model I/O, tool calls, and whatever your users typed. We made the safe choices the defaults and put the controls in your hands.

PII redacted before storage

Emails, credit-card numbers, US SSNs, and phone numbers are stripped at ingest — before anything is written to the database. Or turn raw-input storage off entirely with one toggle.

Read what leaves your process

The SDKs are MIT-licensed and published in the open — @intencion/sdk on npm and intencion on PyPI. Audit exactly what gets captured and sent.

Self-host & data residency Enterprise

Run Intencion in your own infrastructure, or pin a workspace to a region. SSO and audit logs included.

Redacted at ingest

  • Email addresses
  • Credit-card numbers
  • US Social Security numbers
  • Phone numbers

Redaction runs in the SDK and again server-side, so raw PII never reaches storage even if a release slips.

What you control

  • Turn off raw-input & output capture entirely
  • Per-field capture caps (prompts, tool I/O, params)
  • Data residency & self-hosting (Enterprise)
  • Retention windows and workspace-level access

Defaults are conservative; everything above is a setting, not a support ticket.

Questions on data handling?

We’re happy to walk through specifics, DPAs, or a security review.