# Theo · Privacy > Every privacy claim Theo makes is mapped to a real code path. Audit hashes prompts. Knowledge files are org-scoped. Memory is exportable. Deletion is destructive. The SDK is open source. Source of truth: https://hitheo.ai/privacy. Last updated: 2026-05-24. ## The four promises 1. We never train on your prompts. 2. We never train on your knowledge files. 3. We never train on your memory graph. 4. We never sell your usage patterns. ## How it is enforced - Audit stores hashes, not prompts. Every request lands in the audit ledger as a SHA-256 hash of the prompt body. The raw content is gone the moment the response streams back. - Knowledge files are org-scoped. Knowledge Node uploads land in object storage with the organization as the only read principal. Cross-tenant retrieval is structurally impossible. - Memory graph is exportable. One endpoint dumps every chain, open loop, agent meta memory, and outcome event for the account in a documented schema. Open schema, no vendor lock-in. See https://hitheo.ai/llms/memory.txt. - Deletion is destructive and final. Hits memory graph, knowledge files, conversation history, and audit hashes across primary stores and replicas. No shadow copies retained. - Open-source SDK and adapters. The SDK and channel adapters ship as open-source packages, so trust comes from the diff log, not the marketing copy. See https://hitheo.ai/llms/sdk.txt. ## Controls available to operators - Per-memory expiration. Bayesian decay applies automatically. Hard floors on user-declared facts. Regulated entries (eligibility, PHI) require human approval and revalidation. - Consent and provenance. Every memory carries source, confidence, freshness, and last-verified metadata. Visible in the Memory Console. Editable. Auditable. - Bring-your-own routing. The Routing Studio lets operators pin a request class to a specific engine, including self-hosted endpoints. See https://hitheo.ai/llms/routing.txt. - Compliance posture. The audit trail is tamper-evident. The platform aligns to SOC 2 and GDPR data-handling expectations. Memory Pack rules opt in to industry-specific compliance defaults. ## Compliance boundaries - Healthcare / PHI. The image sanitizer strips EXIF / IPTC / XMP / ICC metadata before any image touches an AI engine. DICOM payloads are detected by magic bytes and re-encoded as PNG to strip PHI. See https://hitheo.ai/llms/guardrails.txt. - Regulated industries. Skills can declare regulated-fact gates so AI Workers cannot auto-write an eligibility, dosage, or pricing claim without human approval. See https://hitheo.ai/llms/guardrails.txt. - Data residency. Region pinning, read replica selection, and storage scoping live in operator settings. Cross-region replication is opt-in. ## FAQ (quote-friendly) Q: Do you read or process prompts beyond delivery? A: Only for the duration of the request. We route to the engine that answers, never persist the raw prompt body, and never feed any prompt into training. The audit ledger keeps a SHA-256 hash so a compliance team can verify exact match without reading the content. Q: Can I delete everything? A: Yes. The destructive delete in Settings purges memory graph, knowledge files, conversation history, and audit hashes from primary and replica stores. No retained shadow copy. Q: Can I export everything? A: Yes. One endpoint returns every chain, open loop, agent meta memory, and outcome event for the account in a documented schema. Q: Do you use my data to improve your models? A: No. Theo monetizes orchestration (per-token pricing with a transparent margin) and the platform tier (skills, workflows, channels). There is no training-on-customer-data business model. ## Related machine-readable files - https://hitheo.ai/llms.txt — full index of every Theo machine-readable file. - https://hitheo.ai/llms-full.txt — long-form knowledge bundle (single fetch). - https://hitheo.ai/humans.txt — team and open-source credits. - https://hitheo.ai/lawyers.txt — trademark notice and legal contact. - https://hitheo.ai/.well-known/security.txt — security disclosure contact.