> ## Documentation Index
> Fetch the complete documentation index at: https://docs.a2v2.ai/llms.txt
> Use this file to discover all available pages before exploring further.

# Data Privacy & Isolation

> How A2V2.ai keeps each organization's and agent's data separate, private, and under your control.

Before you upload a customer list or train an agent on internal documents, it's
fair to ask: *Who else can see this? Could another company's agent accidentally
answer from my content? What happens to my data?*

This page explains how A2V2.ai isolates your data — between organizations, between
agents, and between the people who use your agents and the people who build them.
It's written for the customer evaluating the platform, not the engineer building it,
so it stays at the concept level.

## The unit of separation: your organization

When you sign up, you get an **organization** — your private workspace. Everything
you create lives inside it: your agents, knowledge bases, conversations, CRM
contacts, billing, and team.

Your organization is the boundary. Every piece of data you create is tagged to your
organization, and the platform scopes every request to the organization of the
signed-in user. One organization's users cannot read, search, or retrieve another
organization's data. Two businesses using A2V2.ai are, in practice, working in
separate rooms — they share the same building, never the same room.

This is what "multi-tenant" means: many customers run on shared infrastructure, but
each customer's data is logically separated and only ever served back to that
customer.

## Each agent is isolated too

Isolation doesn't stop at the organization. **Within** your organization, each
agent has its own private knowledge.

When you train an agent on a document, that content is indexed into a search space
dedicated to *that agent*. A different agent in the same organization can't retrieve
it. This is why:

* Training one agent on a document does **not** make it available to your other
  agents.
* A public-facing support agent and an internal HR agent can live in the same
  organization without ever crossing knowledge.
* Deleting a source from one agent doesn't affect any other agent.

<Note>
  If you want two agents to share knowledge, add the source to each of them. There's
  no shared pool — separation is the default, by design.
</Note>

## The people who use your agent are separated from the people who build it

There are two very different kinds of "users" on the platform, and they have
completely separate access:

* **Your team** signs in to the dashboard to build, train, and manage agents. Their
  access is governed by [roles](/settings/members-and-roles) — Owner, Admin, and
  User — so you decide who can touch billing, who can manage content, and who only
  has limited access.
* **Visitors** who chat with your embedded agent are end-users on your website. When
  an agent is [restricted](/embed/visibility), visitors sign in with their own
  separate login. That login lets them talk to the agent and see their own
  conversation — it does **not** grant any access to your dashboard, your other
  agents, or anyone else's chats.

The same principle applies to programmatic access: [API keys](/settings/api-keys)
are scoped to a specific agent, so an integration you build for one agent can't
reach across to another.

## How you sign in

Account access is protected by design:

* You sign in with a **one-time passcode** sent to your email, or with **Google**.
  There's no reusable password to leak or reuse.
* Passcodes are short-lived and single-use.
* Signing out ends your session — access is tied to an active session, not a
  permanent key.

## HIPAA-eligible models

If you work with health-related information, model choice matters. In the model
selector on the [Sandbox](/testing/sandbox), some models carry a **HIPAA** badge.
That badge marks models that are eligible for use in HIPAA-regulated workflows;
models without it are not marked for that use.

<Warning>
  The **HIPAA** badge identifies eligible *models* — it is not by itself a compliance
  certification for your specific use case. Handling regulated health data also
  depends on the right agreements and configuration being in place for your
  organization. If you're building for a healthcare use case, talk to us at
  [support@a2v2.ai](mailto:support@a2v2.ai) before going live so we can confirm the
  right setup for you.
</Warning>

See [Choosing a model](/concepts/choosing-a-model) for how the HIPAA and Premium
badges factor into model selection.

## Where your data lives

At a high level:

* **Your content** — the files, URLs, and Q\&A you train agents on — is stored
  securely in the cloud and used to answer questions for *your* agents only.
* **Your conversations and contacts** are stored in your organization and visible
  only to your team, according to their roles.
* **You stay in control.** You can delete sources, conversations, and contacts. When
  you remove a source, it stops being used in answers.

<Note>
  A2V2.ai uses leading AI providers to generate answers and embeddings. Which provider
  is used depends on the [model you choose](/concepts/choosing-a-model) for each agent.
  For specifics about data handling and any agreements relevant to your industry,
  reach out to [support@a2v2.ai](mailto:support@a2v2.ai).
</Note>

## What this means for you

* **You can safely run multiple agents** — public and internal — from one
  organization without their knowledge mixing.
* **Use roles deliberately.** The strongest control you manage day to day is who's
  on your team and what role they hold. Review [members and
  roles](/settings/members-and-roles) periodically.
* **Restrict sensitive agents.** If an agent shouldn't be open to the public, use
  [visibility and access controls](/embed/visibility) so only authenticated visitors
  can reach it.
* **Ask when in doubt.** For compliance questions specific to your industry,
  [support@a2v2.ai](mailto:support@a2v2.ai) is the right starting point — this page
  explains how isolation works, not what your regulatory obligations are.

## Related

<CardGroup cols={2}>
  <Card title="Members & roles" icon="users" href="/settings/members-and-roles">
    Control who on your team can do what.
  </Card>

  <Card title="Agent visibility & access" icon="lock" href="/embed/visibility">
    Make an agent public, restricted, or paid.
  </Card>

  <Card title="API keys" icon="key" href="/settings/api-keys">
    Scoped, per-agent programmatic access.
  </Card>

  <Card title="How RAG works" icon="diagram-project" href="/concepts/how-rag-works">
    How agents answer only from your content.
  </Card>
</CardGroup>
