How Cuvanti's AI Handles Your Data
Last Updated: July 9, 2026
Cuvanti uses AI to take busywork off your desk: matching bank transactions, drafting owner statements, triaging maintenance requests, drafting communications, and more. This page explains, in plain language, what data that AI can see, what it can never see, and who stays in control.
The three rules we build every AI feature around
1. AI drafts, humans decide. No Cuvanti AI agent sends money, posts a listing, files a report, or messages a tenant on its own. AI prepares the work; a person you have authorised reviews and approves it. Anything irreversible has a human in front of it.
2. AI sees only what the task needs. Every AI agent operates inside the same role-based permissions as the person using it. An agent working for one organisation can never see another organisation's data. An agent drafting a maintenance reply sees that ticket, not your ledger.
3. Your data is never used to train AI models. Data processed by our AI provider is used to produce your result and nothing else. Under the commercial terms we operate on, our AI provider does not use your data to train its models, and we do not train models on customer data ourselves.
What AI features can access
Only the minimum needed for the task. For example: transaction descriptions and amounts for reconciliation matching; lease dates and rent amounts for owner statements; the text of a maintenance request for triage and drafting; property facts you have entered for listing content.
What is never sent to AI models
- Passwords, security codes, or login credentials of any kind
- Full bank account numbers or full card numbers
- Government identifiers (SSN, TFN, passport numbers)
- Bank connection credentials (these flow only through regulated banking connections and are never visible to Cuvanti staff or AI)
- Documents you have not chosen to process with an AI feature
Where the data goes
AI processing uses an established enterprise AI provider under a data protection agreement, alongside Cuvanti's own systems. Data is encrypted in transit and at rest. Under the provider's commercial terms, inputs and outputs may be retained for a short period solely for abuse and misuse monitoring and are then deleted; they are not used for training. A current list of subprocessors is available on request via privacy@cuvanti.com. We do not sell your data, and our AI provider receives no rights to it beyond returning your result.
Retention and control
AI-generated drafts and suggestions live in your account under your control; delete them like any other record. You can decline to use any AI feature: every AI capability in Cuvanti has a manual path.
Questions
privacy@cuvanti.com for data handling; security@cuvanti.com for security disclosures. Our Privacy Policy governs everything on this page; if this summary and the Privacy Policy ever differ, the Privacy Policy controls.