Data Handling and Privacy
What data flows through Canoma and how to operate with least exposure.
Use this page to set clear boundaries for what data enters Canoma and how long it remains accessible in operational workflows.
Data Categories
User and Workflow Content
- Query text and generated outputs.
- Shared summaries and investigation notes.
Optional Connector Data
- Internal connector responses retrieved during analysis.
- Context pulled from approved MCP-integrated systems.
Product Telemetry
- Usage telemetry (latency, token usage, estimated cost).
Handling Principles
- Minimize sensitive data in prompts unless required for analysis.
- Separate factual evidence from analyst assumptions in outputs.
- Share only the portion of data needed by the target audience.
Operational Controls
Access and Governance
- Use role-based access for internal-data workflows.
- Review and revoke access when team roles change.
- Audit shared links and revoke when no longer needed.
Practical Privacy Baseline
Least exposure by default
Use environment-level access boundaries and scoped queries before enabling broad connector searches.