Privacy Policy

Last Updated: February 4, 2026

1. Introduction

BLAZE LABS PTY LTD (ABN 66 694 592 553) ("we," "our," or "us") is dedicated to providing a Governed Runtime for Enterprise Decisions. BlazeXL is more than an tool; it is a secure infrastructure for deterministic execution. This Privacy Policy explains how we protect your information across the BlazeXL ecosystem, including our Compute Grid, Governance Gateway, and Blaze Blocks.

2. Data Ingestion & Governance

We process information to facilitate high-performance execution and auditability:

  • Identity Provisioning: We collect email and profile metadata via secure authentication providers to manage access to the Governance Gateway.
  • Universal Surfaces: We process data ingested via Excel (V2 Add-in), Web Dashboard uploads, or the Universal Clipboard. This data is routed directly to the isolated Compute Grid.
  • Execution Metadata & Audit Logs: To ensure organizational governance, the Governance Gateway logs execution events (who, what, and when). This metadata is stored to provide a permanent audit trail of enterprise logic usage.
  • Subscription Management: Secure billing is handled per-seat via Stripe; we do not store raw financial credentials.

3. Cookies & Tracking Technologies

In compliance with GDPR and CCPA, we provide granular control over the technologies used to enhance your experience:

  • Essential Cookies: Required for security, authentication, and platform stability. These cannot be disabled as they are necessary for the Governance Gateway to function.
  • Analytics (Performance): We use anonymized tracking to understand how our Compute Grid and Dashboard are utilized, helping us optimize performance.
  • Marketing & Outreach: With your explicit consent, we may use cookies to personalize our communications and measure the effectiveness of our growth initiatives.

You may revise your consent at any time through our on-site privacy controls.

4. Secure Architecture: Compute Grid

BlazeXL is built on a "Decoupled Logic" model to maximize privacy:

  • Isolated Runtime: Your data is processed within the Compute Grid—a cluster of sandboxed, hardware-isolated Python environments. These environments are ephemeral and data is purged upon execution completion.
  • Crystallized Logic (Blaze Blocks): When you save logic as a Blaze Block, the code is version-locked in the Governance Gateway. Your data remains transient and is never used to train models.
  • Grounded AI Context: Our AI Analyst operates on a "transient context" model, utilizing only the necessary schema to generate deterministic Python code. This context is never persisted.

5. Determinism vs. Probabilistic AI

Unlike generic AI platforms, BlazeXL prioritizes deterministic execution.

  • No Model Training: We NEVER use your proprietary data, prompts, or executed Blaze Blocks to train our models or third-party Large Language Models (LLMs).
  • Isolated Inference: AI interactions are treated as logic-generation tasks only. The actual "heavy lifting" of data analysis is performed by our isolated Python runtime, keeping your data away from LLM training loops.

6. GDPR & International Data Rights

Under the General Data Protection Regulation (GDPR), European residents have specific rights:

  • Right of Access & Portability: You may request a copy of the metadata associated with your Governance Gateway account.
  • Right to Erasure ("Right to be Forgotten"): You may request the deletion of your account and associated audit metadata, subject to regulatory retention requirements.
  • Right to Object: You may opt-out of all non-essential data processing at any time.

7. CCPA / CPRA Compliance (California)

California residents are entitled to additional protections under the CCPA/CPRA:

  • Right to Know: You have the right to know what personal information is collected and how it is shared.
  • Right to Opt-Out of Sale/Sharing: BLAZE LABS does not sell your personal information. We only share data with service providers necessary for platform execution (e.g., cloud infrastructure).
  • Non-Discrimination: We will not deny service or change pricing based on your exercise of privacy rights.

8. Data Residency & Sovereignty

BlazeXL utilizing professional cloud infrastructure. By default, data is processed in the region closest to the user to ensure low-latency performance on the Compute Grid. Enterprise customers may request dedicated regional provisioning for enhanced data residency compliance.

9. Contact Oversight

For privacy inquiries, GDPR data requests, or CCPA disclosures, please contact our security team at [email protected].