Privacy Policy

Effective date: June 2, 2026

1. Introduction

Sablier ("we", "us", "our") operates the sablier.ai website and the sablier-flow Python SDK and hosted compute service (collectively, the "Service"). This Privacy Policy explains what information we collect, how we use it, and the choices you have.

2. What Data We Collect

Account Information

When you create an account we collect your email address and basic profile information needed to authenticate you, mint API keys, and manage your subscription. If you sign in with Google, we receive the email address and identifier Google shares with us.

Customer Data (DataFrames Submitted for Synthetic-Path Generation)

When you call sf.fit, sf.generate, or sf.validate, the SDK serialises your DataFrame to Parquet, generates a fresh symmetric key on your machine, and uploads the resulting ciphertext to our hosted compute service. Plaintext customer data exists only inside the worker's memory for the duration of the job. We do not read, log, or retain plaintext customer DataFrames.

Job Metadata

For operational and billing purposes we record the job identifier, customer identifier, request timestamps, ciphertext sizes, completion status, and the credit cost of each call. We do not record the contents of the DataFrame.

Payment Information

Subscriptions and credit packs are processed by Stripe. We do not store full credit card numbers; Stripe stores them on our behalf under their own privacy controls.

Web Analytics

On sablier.ai and docs.sablier.ai we use minimal first-party analytics to understand which pages are read. We do not use third-party cross-site advertising trackers.

3. How We Use Your Data

To provide the Service, specifically to:

  • Authenticate you and authorise API requests
  • Run the fit / generate / validate jobs you submit and return the encrypted result to you
  • Bill you for usage and resolve payment issues
  • Diagnose errors, prevent abuse, and improve performance
  • Send transactional emails (verification, security alerts, billing receipts)

We do not sell your data. We do not use your submitted DataFrames or generated synthetic paths to train, fine-tune, or otherwise improve any model.

4. Third-Party Sub-processors

  • Google Cloud Platform — hosts the compute backend that runs the generative model
  • Stripe — payment processing
  • Vercel — hosts sablier.ai and docs.sablier.ai
  • Transactional email provider — sends account and billing emails

Each sub-processor receives only the data necessary to perform its function and is bound by its own data-protection terms.

5. Data Retention

  • Encrypted job inputs and results are retained for the lifetime of the model (currently up to 30 days after the last successful generate / validate call) so you can re-use a trained model without re-uploading data.
  • Job metadata (identifiers, timestamps, credit cost) is retained while your account is active and for a reasonable period after account closure for billing reconciliation and tax compliance.
  • Account information is retained for the lifetime of your account. On deletion we remove or anonymise it within 30 days, subject to legal retention requirements.

6. Security

  • TLS 1.3 on every API call
  • Envelope encryption (X25519 + AES-256-GCM) of customer data on the wire, with one-shot per-job symmetric keys that are never persisted to disk
  • KMS-managed at-rest encryption on every stored blob
  • Image-digest pinning of the worker image on every request
  • Per-job worker isolation; instances scaled to zero between jobs
  • Hardware memory encryption (AMD SEV-SNP, NVIDIA H100 CC) is on the roadmap and not yet live; the alpha threat model is documented on docs.sablier.ai

7. Your Rights

Subject to applicable law (including GDPR for users in the EEA, UK, and Switzerland) you have the right to access, correct, export, or delete your personal data, and to object to or restrict certain processing. You can manage account data and delete your account from the dashboard, or contact us at the address below.

8. Children

The Service is not directed to children under 16 and we do not knowingly collect their personal data.

9. Changes to This Policy

We may update this policy from time to time. Material changes will be announced via email or on this page with an updated effective date.

10. Contact

Questions about this policy can be sent to team@sablier.it.