Privacy Policy — SIX | Sovereign Inference Exchange

Our Principle: SIX is built on the premise that your data belongs to you. This privacy policy reflects that same commitment. We collect the minimum necessary to operate the service and communicate with you. Nothing more.

1. Who We Are

SIX (Sovereign Inference Exchange) is operated by Kenn Mangum, a sole proprietor based in the United States. When this policy refers to "SIX," "we," "us," or "our," it means Kenn Mangum d/b/a SIX.

Contact: support@six-sov.com

2. What We Collect

2a. Website Visitors

Data	Source	Purpose
Email address	Beta signup form	To communicate about beta access
Company name	Beta signup form (optional)	To understand your use case
Industry selection	Beta signup form	To prioritize relevant onboarding
Server access logs	Automatic (web server)	Security monitoring, debugging

We do not use cookies, tracking pixels, analytics scripts, or third-party advertising on this website. There is no Google Analytics, no Facebook Pixel, no session replay tooling. Sandbox access logs (authentication attempts, timestamps) are retained solely for security monitoring and abuse prevention.

2b. API Users (Developer Beta)

Data	Source	Purpose
API key	Issued during onboarding	Authentication
Request metadata	API calls (timestamps, model, routing)	Receipt generation, billing, auditing
Public key (if using signature auth)	Provided by you during onboarding	Cryptographic verification

What we don't collect from API users: When using sovereign routing, your inference content (prompts and responses) is processed on your infrastructure and never reaches SIX servers. Receipts contain cryptographic commitments — not your data.

3. How We Use Your Data

Communication: Responding to your inquiries, providing beta access, sharing relevant updates
Service operation: Authenticating API requests, generating receipts, processing settlement
Security: Detecting unauthorized access, abuse prevention
Improvement: Understanding aggregate usage patterns to improve infrastructure (no individual profiling)

We will never sell your personal data. We will never use your data for advertising. We will never share your data with third parties for their marketing purposes.

4. Third-Party Services

Service	Purpose	Data Shared
Formspree	Form submission processing	Email, company, industry (from signup form)

Formspree's privacy policy: formspree.io/legal/privacy-policy

5. Data Sovereignty & Inference Privacy

SIX's architecture is designed to keep your inference data within your control:

Sovereign routing: Inference content is processed on your designated infrastructure, not ours
Receipts, not replays: Cryptographic receipts prove execution occurred without containing your prompt or response content
Cryptographic commitments: Receipt fields are bound by cryptographic commitments — we can prove integrity without accessing your data
Key sovereignty: If using signature authentication, you generate and control your keypairs. We never store your private keys.

6. Data Retention

Data Type	Retention Period
Beta signup submissions	Duration of beta program + 12 months
API access logs	90 days (security monitoring)
Cryptographic receipts	Retained as part of the audit trail (configurable for enterprise)
Server access logs	30 days
NDA correspondence	Duration of agreement + legal retention period

7. Your Rights

Regardless of your jurisdiction, we honor the following rights:

Access: Request a copy of data we hold about you
Correction: Request correction of inaccurate data
Deletion: Request deletion of your data (subject to legal retention requirements)
Portability: Receive your data in a standard, machine-readable format
Objection: Object to processing of your data for specific purposes

To exercise any of these rights, contact support@six-sov.com. We will respond within 30 days.

For EU/EEA Residents (GDPR)

If you are located in the European Union or European Economic Area, you have additional rights under the General Data Protection Regulation (GDPR):

Right to restrict processing
Right to withdraw consent at any time
Right to lodge a complaint with your local data protection authority

Legal basis for processing: Legitimate interest (operating the service and communicating with beta applicants) and, where applicable, your consent (form submissions).

For California Residents (CCPA)

Under the California Consumer Privacy Act, you have the right to know what personal information we collect, request deletion, and opt out of the sale of personal information. We do not sell personal information.

8. Security

We take security seriously — it's the core of what we build:

All connections use TLS encryption
Server-side authentication with industry-standard hashing
API keys issued individually and revocable
Infrastructure access restricted by SSH key authentication
No unnecessary third-party scripts or dependencies on this website

9. Cookies

This website does not use cookies. No first-party cookies, no third-party cookies, no session cookies, no tracking cookies. The sandbox area uses HTTP Basic Authentication provided by the web server — no cookies are set.

10. Children's Privacy

SIX is not directed at individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have collected data from a minor, please contact us immediately.

11. Changes to This Policy

We may update this policy as our service evolves. Changes will be posted on this page with an updated "Last Updated" date. For material changes, we will notify active beta participants by email.

12. Contact

For privacy-related inquiries:

Email: support@six-sov.com
Subject line: "Privacy Inquiry" (for routing)

The short version: We collect what we need to run the service and talk to you. We don't track you, we don't sell your data, and we don't use advertising. Your inference data stays on your infrastructure. Your receipts prove it.