Skip to content
Login to the app
  • There are no suggestions because the search field is empty.

How CyberPilot Uses AI — And How We Protect Your Data

Here is a transparent overview of how we use AI today and how we safeguard your data.

At CyberPilot, we use Artificial Intelligence (AI) to improve the user experience and support our customers more efficiently. Just as importantly, we are extremely careful about not exposing personal data (PII) or any other sensitive information to external AI systems.

 

 

Our AI Services

We currently use two AI services:

1. Amazon Bedrock (within our product)

Amazon Bedrock is used to power certain intelligent features inside our platform.
Here is how we use it — and how we protect your data:

  • We only train the model on non-personal, internal CyberPilot content, such as awareness course material and phishing templates.

  • No customer data, user data, or PII is ever included in training.

  • When our system sends prompts to Bedrock, we only pass non-sensitive information, for example generic training history (e.g., “Module X completed”), without names, emails, or identifiers.

  • Bedrock is accessed only through our application code, and all requests are strictly controlled.

This ensures that Amazon does not receive or process any customer-specific or personal information when we use Bedrock.

 

2. Intercom Fin (customer support assistant)

Intercom Fin is used on our website and inside our support chat.

  • Fin does not have access to any customer data stored in CyberPilot’s systems.

  • Fin is trained exclusively on CyberPedia, our public-facing knowledge base.

  • When you chat with Fin, it only sees the messages you type — and we never connect these to your training data or account information.

  • All personal support needs are handled by a human before anything sensitive is discussed.

This ensures that Fin operates purely as a general help assistant, without access to internal or personal data.

 

 

Our Commitment to Data Protection

Across both services, we follow these principles:

  • No PII or sensitive data is ever sent to external AI systems.

  • AI is only used on internal or public content.

  • Customer data always stays within our secure platform.

  • We continuously review our AI usage to ensure compliance with GDPR and best-practice data protection.

If you have questions about our use of AI or want a deeper technical explanation, we’re always happy to help.