OverviewEdrak provides a secure software layer that enables organizations to access and use multiple AI models (LLMs) within a controlled, enterprise-grade environment.Edrak is designed to maximize productivity while ensuring that data privacy, governance, and control remain with the customer at all times, in compliance with applicable laws and regulations in the Kingdom of Saudi Arabia.
Data Ownership
Customers retain full ownership and control of all data processed through Edrak
Edrak does not claim any ownership rights over customer data, prompts, or outputs
Data is processed solely for the purpose of delivering the service and improving platform functionality
No Model Training on Customer Data
Customer data is not used to train any AI models
This applies to:
Edrak systems
Integrated third-party AI providers (subject to their enterprise terms)
All interactions are handled in a manner designed to maintain confidentiality and isolation
Data Privacy & SecurityEdrak implements enterprise-grade security measures, including:
Encryption of data in transit and at rest
Secure API integrations with AI model providers
Role-based access controls (RBAC)
Workspace-level data segregation
Edrak takes commercially reasonable measures to protect customer data against unauthorized access, disclosure, or misuse.
Governance & Administrative ControlOrganizations maintain full control over their environment, including:
Administrative dashboards for monitoring usage and activity
User management (add, remove, and manage access levels)
Visibility into usage metrics and system activity
Edrak provides the tools required for organizations to implement their own internal governance policies.
Data Usage PhilosophyEdrak provides infrastructure and control.
Customers are responsible for defining their own internal AI usage policies
Users are expected to act in compliance with applicable laws, regulations, and organizational policies
Edrak does not assume responsibility for how customers choose to use AI within the platform.
Third-Party Model IntegrationsEdrak integrates with leading AI providers (e.g., OpenAI, Google, Anthropic).
Data shared with such providers is processed solely to generate responses
Such providers may be subject to separate terms and policies
Edrak does not control third-party systems and disclaims liability arising from their use, to the extent permitted by law
Data Retention
Customers retain control over their data retention practices where technically feasible
Edrak retains data only as necessary to operate and secure the service
Data deletion requests will be honored in accordance with applicable laws and technical constraints
ComplianceEdrak is designed to align with recognized standards and applicable regulations, including:
Relevant data protection laws and regulations in the Kingdom of Saudi Arabia
International best practices (e.g., SOC 2 principles, GDPR-aligned concepts where applicable)
Customers remain responsible for ensuring their use of Edrak complies with laws applicable to their operations.
Policy UpdatesEdrak may update this policy from time to time to reflect changes in law, regulation, or product functionality.Material updates will be communicated where required.
Acceptable Use & Platform Integrity
Acceptable UseEdrak must be used in a lawful, responsible, and compliant manner.Users may not misuse the platform or attempt to bypass its safeguards.
Prohibited ActivitiesUsers must not use Edrak to:
Coordinate or facilitate malicious activity, including attempts to bypass safeguards, detection systems, or platform controls
Engage in automated account creation, spam, or abusive behavior
Circumvent account restrictions or bans, including enabling access for restricted users
Provide access to Edrak in violation of applicable laws, sanctions, or jurisdictional restrictions
Attempt to bypass, manipulate, or exploit system safeguards (including prompt injection or jailbreaking) to generate harmful or prohibited outputs
Use Edrak, or any inputs or outputs generated through it, to train, replicate, reverse engineer, or develop competing AI models or services without prior written authorization
EnforcementEdrak reserves the right, at its sole discretion, to:
Monitor usage for security and compliance purposes
Investigate suspected violations
Restrict, suspend, or terminate access without prior notice where misuse is identified
Edrak shall not be liable for any consequences arising from enforcement actions taken in good faith.
Third-Party TermsUse of integrated AI models through Edrak may be subject to additional third-party terms and conditions.Users are responsible for complying with such terms where applicable.
Limitation of ResponsibilityEdrak provides the platform "as is" and does not control or assume responsibility for:
Customer inputs or outputs generated through AI models
Decisions, actions, or outcomes resulting from use of the platform
The performance or behavior of third-party AI providers
To the fullest extent permitted by law, Edrak disclaims liability arising from misuse or unauthorized use of the platform.