Overview
Uploaded documents are processed by the ingester only to produce a template. We don't use uploaded documents for any other purpose, and in particular, we don't do any model training with them. Uploaded documents and the generated template can only be accessed by the user that uploaded it - no one else can access these documents.
The Word add-in doesn't send any user data outside of the Word app itself.
Details
Access to the ingester is protected by authenticating Microsoft or Google accounts using the OpenID Connect protocol. Only authenticated accounts that are explicitly whitelisted in our authorisation table can access the ingester or run the Microsoft Word add-in.
The ingester runs in Microsoft's Azure cloud. Documents uploaded to the ingester are kept only in-memory by the ingester - no durable copy of the document or contents are saved by our ingester.
Contents of uploaded documents are sent inside prompts to Microsoft-managed versions of OpenAI services running in Microsoft's Azure cloud. Microsoft keeps a copy of these prompts for 30 days for abuse prevention, after which that copy is deleted. Microsoft's policy and process is documented here: https://learn.microsoft.com/en-us/legal/cognitive-services/openai/data-privacy.
We don't do any training on uploaded documents or data; Microsoft doesn't do any training using these documents or data either.
Uploaded documents can't be downloaded at all. Generated templates can only be downloaded by the uploading user with a secure key that is accessible only by the uploading user.
Uploaded documents and downloaded templates are transferred bewteen the browser and the ingester by the secure HTTPS procotol.
The Word add-in doesn't send any user data outside of the Word application - all the metadata that the add-in uses is stored as a custom property within the generated template document.