All data processed by Dovetail agents stays entirely within your Microsoft 365 tenant. No customer data leaves your environment at any point. Unlike other AI solutions, Dovetail never hosts or transfers your data to external servers. Everything runs inside your existing Microsoft 365 infrastructure, protected by Microsoft’s enterprise-grade security and compliance controls. 

Only users and administrators within your Microsoft 365 tenant, governed by your existing access controls and permissions, can access data handled by Dovetail agents. Dovetail never has access to your data, and no third-party hosting is involved. 

No. Dovetail agents do not use your data to train any AI models. All prompts, responses, and documents remain private to your organisation and are never used to improve or retrain underlying models. This is contractually guaranteed by Microsoft’s Data Protection Addendum and Dovetail’s own commitments. 

Dovetail inherits all Microsoft 365 security, privacy, and compliance standards, including encryption at rest and in transit, Zero Trust architecture, Conditional Access, Microsoft Purview, and compliance with frameworks such as GDPR, ISO/IEC 27001, and SOC 2. Your data is protected by the same controls that safeguard your emails, files, and Teams chats. 

Yes. All data remains within your Microsoft 365 tenant and is subject to your organisation’s data residency and compliance policies. Dovetail does not move or process your data outside your chosen Microsoft region. 

Dovetail agents are governed by your Microsoft 365 policies, including audit trails, retention policies, and sensitivity labels. All interactions can be monitored and logged using your existing Microsoft compliance tools. 

You retain full control over your data at all times. Dovetail has no access to your data. All data remains within your Microsoft 365 tenant, and only your organisation’s administrators and users can manage, delete, or revoke access using standard Microsoft 365 admin tools. Dovetail cannot view, store, or retrieve any of your information. 

Dovetail leverages Microsoft’s enterprise-grade AI security, including protections against prompt injection, harmful content, and data leakage. All AI processing respects your organisation’s access controls and sensitivity labels, ensuring only authorized users can access sensitive information.