Is HoundShield CMMC Level 2 compliant?

Yes. HoundShield is local-only — all AI prompt scanning happens on your infrastructure. No CUI ever leaves your control boundary, which satisfies NIST 800-171 control 3.13.1 and supports CMMC Level 2 certification. We generate PDF evidence reports that C3PAO assessors can review on-site.

Can my employees still use ChatGPT with HoundShield?

Yes. HoundShield works as a transparent proxy. Employees point their AI tools at your HoundShield endpoint instead of directly at the AI API. Prompts that don't contain CUI/PHI/PII pass through normally. Flagged content is blocked and logged with a tamper-evident record.

How long does HoundShield take to set up?

Under 10 minutes for most organizations. It's a single URL change — point your AI tools at your HoundShield endpoint instead of the cloud AI API. Docker deployment takes 3 commands. No agent installation on individual machines required.

Does HoundShield work with ChatGPT, Claude, and other AI tools?

Yes. HoundShield works with any AI tool that uses an OpenAI-compatible API — including ChatGPT, Claude, Gemini, Copilot, and open-source models. It acts as a drop-in proxy at the network level.

Privacy Policy

Last updated: March 11, 2026

1. Information We Collect

Account Information: When you create an account, we collect your name, email address, and company name. If you sign in via OAuth (Google, GitHub, Microsoft), we receive your public profile information from those providers.

Usage Data: We collect information about how you interact with the platform, including pages visited, features used, API scan counts, and assessment progress.

Compliance Data: When you use the AI compliance firewall, we process API request metadata (prompt hashes, risk classifications, detected entities). We never store raw prompt content in plaintext — quarantined items are encrypted with AES-256.

Payment Information: Payment processing is handled entirely by Stripe. We do not store credit card numbers. We retain Stripe customer IDs and subscription status.

2. How We Use Your Information

Provide and maintain the HoundShield platform
Process CMMC/compliance assessments and generate reports
Detect and classify sensitive data in AI API traffic
Process payments and manage subscriptions
Send service-related notifications (security alerts, billing)
Improve the platform through anonymized analytics

3. Data Security

We implement industry-standard security measures including:

AES-256 encryption for quarantined content at rest
SHA-256 cryptographic audit trail for all compliance events
TLS 1.3 encryption for all data in transit
Row Level Security (RLS) in our database
Regular security audits and dependency scanning

4. Data Sharing

We do not sell your data. We share information only with:

Supabase: Database hosting and authentication
Stripe: Payment processing
Vercel: Application hosting
OpenRouter: AI model inference (only when you use AI features)

We may disclose information if required by law or to protect the rights, safety, or property of HoundShield or its users.

5. Data Retention

Compliance event data is retained based on your subscription tier (7 days free, 90 days Pro, unlimited Enterprise/Agency). You can request deletion of your account and associated data at any time by contacting us.

6. Your Rights

Depending on your jurisdiction, you may have the right to:

Access, correct, or delete your personal data
Export your data in a portable format
Opt out of marketing communications
Withdraw consent for data processing

7. Cookies

We use essential cookies for authentication and session management. We use anonymous analytics cookies to improve the platform. You can control cookie preferences through your browser settings.

8. Contact

For privacy-related inquiries, contact us at admin@houndshield.com.

Read our Terms of Service →