Privacy Policy

Last updated: March 15, 2026

Northern Inference Inc. ("we", "us", "our") is a Canadian company committed to data privacy and transparency. This policy covers both our website (northerninference.ca) and our API platform. We explain what data we collect, where it goes, and what your rights are.

1. What Data We Collect

Account and identity data:

Name, email address, and password (hashed, never stored in plaintext)
Organization name and role
Billing address and payment information (processed by Stripe; we store only Stripe customer IDs)

API usage data:

API requests: model name, token counts, latency, privacy tier, timestamp, and a request ID
Request content (prompts and completions) is not logged or stored by Northern Inference unless you enable the PII Substitution feature, in which case a temporary mapping (original → substitute) is held for the duration of the request and then deleted
Cost per request (input tokens × rate + output tokens × rate)

Website and portal analytics:

Page views, session duration, scroll depth, and navigation events
Device type, browser, and approximate location (country/region from IP. IP address is not stored)
Referral source and UTM campaign parameters
Analytics are tied to a random visitor ID stored in your browser. not your email

Support data:

Support ticket content and correspondence

2. Privacy Tiers. Where Your API Data Goes

Our core product is routing inference requests to LLM providers. Where your data goes depends on the privacy tier you choose per request:

Tier	Provider	Data Location	Jurisdiction
Tier 1	Your hardware (via NI)	Your premises	Your jurisdiction
Tier 3	AWS Bedrock / Azure	Canada (ca-central-1 / Canada East)	Canada (US CLOUD Act applies to providers)
Tier 4	OpenAI, Anthropic, Google, etc.	United States	United States

What Northern Inference sees: Your prompts and completions pass through our routing infrastructure in Canada (ca-central-1) in memory only, for the duration of routing. We do not persist request content. Chain of custody records (entity, jurisdiction, timestamp per hop. but not content) are stored for 90 days.

What providers see: Each provider you route to receives your prompt and returns a completion, subject to their own privacy policies. Tier 3 providers (AWS, Microsoft) contractually commit to not using API data for training. Tier 4 routes use provider-default or non-Canadian residency; custody headers show the exact upstream provider, region, and jurisdiction for each request.

3. Sub-processors

The following third parties process data on our behalf:

Sub-processor	Purpose	Data Location
Amazon Web Services	Infrastructure, database, storage, email (SES), LLM inference (Bedrock)	Canada (ca-central-1)
Microsoft Azure	LLM inference (Azure. Tier 3 only)	Canada (Canada East)
Google Cloud	LLM inference (Vertex AI / Gemini. Tier 4 only)	United States (us-central1)
Stripe	Payment processing	United States
Google Fonts	Font delivery (website only)	Global CDN

4. PII Substitution (Optional Feature)

When enabled on your API key or per-request, our PII Substitution feature automatically detects personal information (names, emails, phone numbers, credit card numbers, IP addresses, locations) in your prompts and replaces them with realistic fictional substitutes before the request leaves our infrastructure. The originals are restored in the response you receive.

Substitution mappings exist only for the duration of the request, then are discarded
An audit record (entity types found and count. not the original values) is stored for 90 days for compliance purposes
This feature is opt-in; it is off by default

5. Data Storage and Security

All Northern Inference account and usage data is stored in AWS Canada (ca-central-1)
Data is encrypted at rest (AES-256) and in transit (TLS 1.2+)
API keys are stored as SHA-256 hashes. we cannot recover your plaintext key
BYOK (Bring Your Own Key) credentials are encrypted with Fernet symmetric encryption before storage
Database access is restricted to the application service; no public access
We do not sell, rent, or share personal data with third parties beyond the sub-processors listed above

6. Cookies and Local Storage

We do not use tracking cookies. We use browser localStorage for:

A random anonymous visitor ID and session ID (for aggregate analytics. contains no PII)
UI preferences (theme, sidebar state, buffer sizes)
Short-lived authentication tokens (cleared on logout)

7. Data Retention

Account data: Retained while your account is active, plus 30 days after deletion request
API request logs (metadata only. no content): 90 days, then automatically deleted
PII audit records: 90 days, then automatically deleted
Chain of custody records: 90 days, then automatically deleted
Analytics events: 90 days, then automatically deleted
Billing and payment records: 7 years (required by Canadian tax law)
Support tickets: 2 years after closure

8. Your Rights (PIPEDA)

Under the Personal Information Protection and Electronic Documents Act (PIPEDA), you have the right to:

Access: Request a copy of the personal data we hold about you
Correction: Request correction of inaccurate data
Deletion: Request deletion of your account and associated personal data (billing records retained per legal requirement)
Portability: Request an export of your data in machine-readable format
Withdraw consent: Unsubscribe from communications at any time via the unsubscribe link in any email

To exercise any of these rights, email privacy@northerninference.ca. We will respond within 30 days. For deletion requests, we will confirm deletion within 30 days of verifying your identity.

9. Contact

For questions about this privacy policy or our data practices:

Email: privacy@northerninference.ca
Northern Inference Inc., Ontario, Canada

10. Changes

We will post material changes to this policy on this page with an updated date and notify registered users by email at least 14 days before changes take effect.