To the leaders, board members, and IT professionals evaluating Steward Circle:
You are considering trusting us with your organization's most sensitive governance questions. That trust isn't given lightly, and it shouldn't be. This page outlines our commitments to you, in plain terms anyone on your team can read and verify.
Commitment One
Your deliberations stay yours.
When you bring a question to the Circle, the contents of that deliberation are never used to teach, refine, or improve any reasoning system, ours or anyone else's. Your competitor will never benefit from your strategic thinking, because no system will ever learn from it. The reasoning provider that powers the Circle is bound by a contract that prohibits this; we have written confirmation, and the link to verify it sits in the technical section below.
Commitment Two
Your data is encrypted, isolated, and yours to delete.
Everything you give us is encrypted with AES-256 at rest and TLS 1.3 in transit. Your deliberations are isolated at the database level, walled off so no other organization can reach them. You can request complete deletion of all your data by emailing info@stewardcircle.com. We respond within 5 business days.
Commitment Three
We will tell you if anything changes.
If we change reasoning providers, data storage practices, or any policy described here, we will notify you directly before the change takes effect, not after, not buried in an updated terms page. You will always know exactly how your data is handled.
For technical evaluators
The exact mechanics behind those commitments.
If you are a board treasurer, IT director, or vendor-assessment officer, here is the same information without the metaphor. The Circle is built on a large language model. We have engineered the system around it so that the commitments above hold.
- Reasoning provider
- Anthropic's Claude API. We have requested commercial Zero Data Retention terms with Anthropic; pending finalization, your deliberations are governed by Anthropic's published commercial privacy and data-handling commitments. API inputs and outputs are not used to train, fine-tune, or evaluate any model. Verify independently: anthropic.com/policies/privacy.
- Where deliberation content lives
- Encrypted PostgreSQL (Supabase, AWS US-East, SOC 2 Type II). Row-level security isolates each organization's data at the database, not just the application layer.
- Provider-side retention
- Anthropic retains API traffic for up to 30 days for safety review, then permanently deletes it. They cannot use that traffic for training under our agreement.
- Account-side retention
- Your deliberations and account data are retained as long as your account is active. Email info@stewardcircle.com to request permanent deletion.
- Encryption
- AES-256 at rest. TLS 1.3 in transit. All data centers US-based.
- Hosting
- Application: Vercel (SOC 2 Type II). Database: Supabase / AWS (SOC 2 Type II). Payments: Stripe (PCI DSS Level 1).