AMS
AI-First · Data & Privacy
AI-First · Data & Privacy

Where the data goes — and who is on the hook for it.

This page covers what AMS does on your behalf. Your direct SaaS relationships — Anthropic, Airtable, Google, Microsoft, etc. — are between you and those vendors, the same way they are today for any tool you already use.

How AI-First handles your data

Three layers, three different places:

LayerWhere it livesWho controls it
Your business dataYour existing storage — Google Drive, OneDrive, Airtable, etc.You
In-flight processingBriefly transits to Anthropic when a Claude session asks a questionAnthropic (per their DPA with you)
AI-First service dataA small set of AMS-side services — see "What AMS holds" belowAMS (per the AMS DPA with you)

What Claude actually does with your data

Your SaaS relationships — where the compliance sits

You already use SaaS tools today (Gmail, Asana, Xero, etc.) and accept their terms directly. AI-First adds Anthropic to that list. The compliance documents for each vendor live with that vendor:

VendorTheir compliance documents
Anthropic (Claude)trust.anthropic.com, privacy.claude.com, DPA in Console → Settings → Legal
Airtable (your base)airtable.com/security, airtable.com/trust
Google Workspacecloud.google.com/security/compliance
Microsoft 365microsoft.com/trust-center

For each, your compliance team can pull certifications (SOC 2, ISO 27001, etc.), the current DPA, and sub-processor lists directly from the vendor — same as they would for any tool you already use.

On US data transfer specifically

Every major cloud SaaS (including all the ones above) processes data in the US. They are GDPR-compliant on the basis of Standard Contractual Clauses included in their DPAs, the EU–US Data Privacy Framework where applicable, or both. This is normal practice — your lawyers will recognise the mechanisms.

What AMS holds and processes for you

This is the bit AMS is on the hook for. Everything else (above) is between you and the underlying vendor.

ServiceWhat it holdsWhere it is hosted
AI-First Delivery (Airtable)Interview transcripts, summaries, contact names & emailsAirtable (AMS workspace)
Interview landing pagesInterview record IDs, email allow-listsCloudflare Worker + KV
Interview invite sendingRecipient email addresses, in transit onlyResend (US)
Make scenarios (AMS-side)Whatever the scenario processes — typically transientMake (EU servers, Czech Republic)

Retention

Personal data we hold (Airtable + Cloudflare): retained for the duration of our working relationship, plus 6 years afterwards — matching the UK statutory limitation period for contract claims. The basis is defence of legal claims and continuity of the ongoing client relationship (clients commonly re-engage and the historical context matters).

Vendor-managed logs (Resend, Make): per each vendor's standard retention — typically days to weeks for transient processing logs.

Earlier deletion or anonymisation is available on request, subject to any legal hold. After the retention window, personal data is either deleted or anonymised (identifiers stripped) while non-personal artefacts (workflows, architecture, patterns) are retained indefinitely for AMS reference.

For these: AMS acts as a processor under GDPR. An AMS DPA covers them — available on request. The DPA defines retention, deletion process, breach notification, sub-processors, and audit rights.

Sub-processors AMS uses

When I process your data on the services above, I use the following sub-processors. Each has its own DPA with me, and your compliance team can review their security posture directly on their trust centres:

Sub-processorWhat they process for AMSLocationTheir trust centre
Anthropic (Claude)In-flight prompts during AI sessionsUStrust.anthropic.com
AirtableAI-First Delivery base (transcripts, contacts)USairtable.com/trust
CloudflareInterview landing pages (record IDs, email allow-lists)Global edge networkcloudflare.com/trust-hub
ResendInvite email delivery (recipient addresses, briefly)USresend.com/legal
MakeAMS-side workflow automation (transient processing)EU (Czech Republic)make.com/en/security

Any change to this list will be communicated to you before it takes effect.

For everything else (the bulk of where data lives — your Drive, your own Airtable base, your Gmail, Anthropic itself): your direct vendor relationships, your direct DPAs.

Confidential documents

AMS sets up a dedicated AI-First folder structure on your storage when we start working together. The AI only reads from that folder. Anything outside it — your other Drive files, your wider Airtable base, anything sensitive — is not visible to the AI.

The model is opt-in by location:

When something new comes in — a draft contract, an IP filing, a confidential report — the decision is just "do I want the AI to help with this?" If yes, drop it in the folder. If no, leave it where it is. The boundary is the folder location, not a Claude setting that could be flipped.

For regulated sectors (financial services, healthcare, legal privilege), additional technical controls beyond folder configuration are usually required. Discuss with AMS upfront if that applies — the default AI-First setup is designed for unregulated and lightly-regulated SMEs.

Run your own compliance review

Before adopting any new SaaS — Anthropic, Airtable, and any other tools we connect to your operation — your team should run their own compliance review. This is your data and your business; that review is yours to own, not something you should outsource to me or any other implementer.

AMS sits in a different category: I am a consultancy and implementation partner, not a SaaS vendor. For the limited data I process on your behalf (see "What AMS holds" above), the AMS DPA covers what your team needs.

Below is where to find everything.

If your compliance lead wants a 15-minute call to walk through specifics, book direct with jason@amsuk.co — happy to support the review, not replace it.