Vivgrid — GDPR Compliance Profile

GDPR Compliance

EU-only data residency

Inference stays in EU

Data Processing Agreement

No training on customer data

Opt-out available

Standard Contractual Clauses

Adequacy decision (HQ country)

Training Unknown

Data Handling

Regions

EU, US

Vivgrid states it automatically routes API requests to the nearest available compute region and markets a global GPU / geo-distributed network. Its model documentation says routing is to the nearest available compute region while maintaining data-residency compliance for enterprise workloads, but no public primary-source guarantee of EU-only processing for standard plans was found.

Retention Policy

Pricing pages state API access log retention is 1 day on the Free plan and 90 days on the Growth plan. Terms also state customer data may be irretrievably deleted if the account is terminated.

Additional Details

Terms say Vivgrid gets a limited license to use Customer Data as necessary to provide the service, will not sell or share personal data in Customer Data for marketing purposes, and may use aggregated de-identified data for business purposes. Terms also state customers should not provide personally identifiable information or personal data subject to applicable law or regulation.

Sub-processors

✗Not disclosed

Certifications & EU AI Act

No certifications disclosed.

EU AI Act Status

unknown

Verification

Last verified2026-04-11

Verified byAI-assisted draft (pending review)

Pricing tierpay per use

Sources

Notes

Vivgrid publicly discloses a privacy policy, terms, pricing, and technical docs, but no public DPA/AVV, SCC terms, sub-processor list, or security certification page was found in primary sources reviewed on 2026-04-11. Public docs indicate globally distributed / nearest-region inference and plan-based API log retention, which suggests data can leave the EU unless covered by non-public enterprise arrangements.