Data Processing

VectorGap processes: **Account data** Email, name, company information for your account. **Brand data** Brand names, websites, descriptions you configure. **Knowledge Base content** Documents you upload for hallucination detection. **Audit results** AI responses and analysis from perception audits. **Usage data** Feature usage, audit history, API calls.

Your data is stored in: **Primary:** EU (Belgium) - Main infrastructure **Backup:** EU (Germany) - Disaster recovery All data stays within the EU unless you explicitly request otherwise. We use: - PostgreSQL for structured data - Encrypted blob storage for documents - Redis for session management

**In transit** All connections use TLS 1.3. **At rest** All data is encrypted using AES-256. **Knowledge Base** Documents are encrypted with customer-specific keys (Enterprise). **Backups** Encrypted and stored in separate geographic regions.

Default retention periods: | Data Type | Retention | |-----------|-----------| | Audit results | 12 months | | Knowledge Base | Until deleted | | Account data | Account lifetime + 30 days | | API logs | 90 days | | Analytics | 24 months | Enterprise plans support custom retention policies.

You can delete: **Individual items** Delete specific audits, documents, or brands anytime. **Account** Request full account deletion via Settings > Account > Delete. **GDPR requests** Submit data export or deletion requests via support. Deletion is permanent within 30 days. Backups are purged within 90 days.