Canonity Logo Canonity
  • Technology
  • Pricing
  • Careers
  • it Italiano en English fr Français de Deutsch es Español
  • Login

Terms of Use and Privacy Policy

Last updated: 16/07/2026

1. What Is Canonity and Its Role

Canonity is a technical intermediary platform (editor) that allows you to create automated workflows based on artificial intelligence models. Canonity does not own its own artificial intelligence model (LLM) and does not generate content autonomously.

The tool that you operate directly is LLM Orchestration: you create workflows connected to third-party AI model providers (OpenAI, Anthropic, Google, xAI, Mistral, DeepSeek, Moonshot AI, Alibaba, Zhipu AI). You choose which provider to use and what content to send to it.

Canonity executes the instructions you configure. It makes no autonomous decisions regarding data processing.

2. You Choose, You Are Responsible

Canonity is a tool. Just as when you use a browser or a scripting application, you determine:

  • Which LLM providers to use (and in which country they are based)
  • What content to send to the AI models
  • How to use AI model outputs

You are responsible for the choices you make and for compliance with applicable laws (copyright, GDPR, etc.).

3. AI-Powered Operation and Technical Limitations

Workflow execution is based on Generative Artificial Intelligence (LLM) models provided by external third parties.

  • Risk of Error: Generative AI models can produce incorrect, incomplete, fabricated (“hallucinations”), or outdated information.
  • No Verification: Data produced is not verified by Canonity. Output is generated by a probabilistic algorithm and should not be considered a source of truth or professional advice (medical, legal, financial).
  • No sensitive content: Never enter sensitive data (passwords, credit card numbers, medical data) in prompts.

4. Integrated LLM Providers

When you choose an LLM provider, your data (prompt text and technical parameters) is sent to that provider. Not sent: your IP, email, payment data, or device information.

ProviderCountryTraining on dataRisk
Mistral (Le Chat)France (EU)No (EU hosting)Low
OpenAI (GPT)USANo (API default)Medium
Anthropic (Claude)USAOpt-out availableMedium
Google (Gemini)USA/EUNo (Enterprise / Vertex AI)Medium
xAI (Grok)USAMay use for improvementHigh
Alibaba (Qwen)Singapore/ChinaSubject to Alibaba policyHigh
DeepSeekChinaYes, opt-out via emailCritical
Moonshot AI (Kimi)China/SingaporeYes, training on user dataCritical
Zhipu AI (GLM)ChinaYes, subject to Chinese lawCritical

⚠ Non-EU Provider Warning: providers based in China (DeepSeek, Moonshot AI/Kimi, Zhipu AI/GLM) and partly Alibaba (Qwen) process data outside the EU; under Chinese law, data may be subject to government access. For processing personal or sensitive data in compliance with the GDPR, a provider with EU hosting (e.g. Mistral) is recommended. For a detailed comparison of hosting, DPA and data residency, see the LLM Comparison page.

5. Disclaimer of Liability

Canonity operates exclusively as a technical intermediary and, therefore:

  • Damages: Canonity cannot be held liable for any damage (direct, indirect, financial, or reputational) arising from workflow execution or use of an LLM provider chosen by the user.
  • External Processing: Since data processing is carried out through external LLM engines chosen by the user, Canonity has no technical control over computation processes and does not guarantee service continuity or accuracy.
  • Use of Results: The user is solely responsible for the use, dissemination, or decisions based on produced data. It is the user's responsibility to verify output accuracy.

6. Privacy Policy (GDPR Summary)

  • Data Controller: Canonity SRL, Via Valdemone 31, 90144 Palermo (PA), Italy — VAT IT07416980824 — privacy@canonity.com
  • Data collected by Canonity: Email, name, password (hashed), billing data (via Stripe), technical data (IP, device, browser), usage logs, technical and analytics cookies.
  • Data routed on your instruction: When you use an LLM, the data you configure passes to the provider you have chosen. Canonity acts as Data Processor on your behalf.
  • Retention: Account data: duration of service + 30 days. Payment data: 7 years (tax obligation). Security logs: 90 days. Prompts and content: not stored beyond execution.
  • What we do NOT do: We don't have our own LLM, don't train models, don't sell data, don't do behavioral advertising, don't monitor prompt content.
  • Extra-EU Transfers: Canonity infrastructure is in the EEA (OVH, France/Germany/Poland). Transfers to non-EU LLM providers happen only when you choose that provider. Choosing a non-EU provider means accepting the transfer.

7. Your Rights (GDPR)

Under Articles 15-22 of the GDPR you have the right to:

  • Access (Art. 15): request a copy of your personal data
  • Rectification (Art. 16): correct inaccurate data
  • Erasure (Art. 17): request data deletion
  • Restriction (Art. 18): restrict processing
  • Portability (Art. 20): receive data in a structured format
  • Objection (Art. 21): object to processing

To exercise your rights: privacy@canonity.com. Response within 30 days.

Right to lodge a complaint with the Garante per la Protezione dei Dati Personali, Piazza di Monte Citorio 121, 00186 Rome — www.garanteprivacy.it

Cookies

For detailed information about the use of cookies, please see our Cookie Policy.

Policy Changes

We reserve the right to modify this policy. Changes will be published on this page with an indication of the last update date. Version 2.1 — June 29, 2026.

Canonity

We put AI to work. For everyone.

Product

  • Features
  • Technology
  • Pricing
  • Roadmap
  • Data security

Resources

  • Blog
  • Documentation
  • Tutorials
  • Compare LLMs

Company

  • About us
  • Careers
  • Contact
  • Privacy
  • Terms of Service
  • Cookies

Canonity © 2025-2026 Canonity SRL. All rights reserved. Patent pending

Canonity SRL · P.IVA IT07416980824 · Via Valdemone 31, 90144 Palermo (PA) · Cap. Soc. € 10.000 i.v. · REA PA457557 · Registered in the Italian Special Register of Innovative Startups

Privacy Policy | Terms of Service | Cookie Policy | Settings

Encryption of your results

All personal content you create on Canonity — chats, workflow executions, uploaded files, usage statistics — is encrypted at rest on our servers with AES-256-GCM, the cryptographic standard used by governments, banks and end-to-end messaging services.

For every single file we generate a unique key, derived from your personal profile and the file location. The HKDF-SHA256 algorithm encrypts different files — even if they are all yours — with two different keys, and no other user can decrypt them.

Permanent deletion

When you delete an execution, a chat or an uploaded file, the corresponding data is physically removed from our servers. There is no trash bin, no grace period, no hidden copies. Once deleted, the files are lost forever — neither you nor Canonity can recover them.

Always save locally any content you wish to preserve before deleting it.

Learn more →
We use cookies

This site uses necessary technical cookies and, with your consent, analytics cookies to improve your experience.

Privacy Policy | Cookie Policy

Cookie settings

required

Essential for the site to function. They cannot be disabled.

Help us understand how you use the site to improve your experience.