Last updated: Sunday, January 18, 2026
SELECT ai policy
How SELECT uses AI to deliver customer value while protecting privacy, security, and trust.
Why do we use AI?
We have a cautious approach to any new technology, AI included. In recent months, the capabilities of LLMs have accelerated at pace, and present clear opportunities for SELECT to provide even more value to our customers. AI has been proven to excel at tasks such as interpretation of disparate data, summarisation, and communicating complex information in understandable and natural language. We leverage these capabilities across SELECT to:
- Summarise key Snowflake query data which previously required manual exploration and analysis
- Provide understandable, concise descriptions of complex queries
- Identifying inefficiencies and propose remedial actions across your Snowflake account
Your data will always be your data
Strict data lifecycle
All data you provide to SELECT is processed only for the purposes you authorize, and is securely deleted afterwards.
We don't train AI on your data
We never use your data in the training of AI models.
Data ownership
You retain ownership of all of your data. We have zero data retention agreements with our AI model providers. We do not sell or share your data with third parties except where required to operate the service.
How AI features are implemented at SELECT
- Data Retention: When we engage third-party AI tools or services, your Snowflake usage metadata is processed only in a secure, transient manner. The only data transmitted to our AI subprocessors are sanitized query text and performance metrics - no sensitive data. We are currently working on establishing ZDR policies with our AI sub-processors, who by default retain prompt data for up to 30 days for identification of abuse and illegal activity. Once ZDR is enabled, the metadata will be neither stored nor retained by the third party.
- Compliant Vendors Only: We carefully select and vet our third-party partners to ensure they meet the most stringent compliance standards, including GDPR, CCPA, SOC 2, ISO 27001, and HIPAA. Each vendor must demonstrate adherence to rigorous privacy, security, and ethical guidelines before being integrated into our systems.
- Vetting and Monitoring: Our due diligence process doesn't stop at onboarding. We continuously monitor all third-party tools to ensure they maintain compliance with our security standards, adapting to any regulatory changes or emerging threats.
Compliance and auditing
SELECT is committed to meeting and exceeding industry standards to give you complete peace of mind.
SOC 2 Type 2 Certification
This certification demonstrates our unwavering commitment to managing your data securely and protecting the privacy and interests of your organization. It covers critical areas like security, availability, processing integrity, confidentiality, and privacy.
Regular audits
We conduct routine internal and external audits to verify that our practices align with the latest compliance standards. This proactive approach ensures we stay ahead of potential risks and regulatory changes.
Fortified architecture for data security
We employ security technologies and practices to safeguard your data at every step of its journey.
End-to-end encryption
Your data is encrypted at all times—whether at rest or in transit—using AES-256, the highest encryption standard available. Even if intercepted, your data remains completely unreadable.
Secure APIs
All data exchanges occur through authenticated APIs, ensuring that only authorized systems and personnel can access your data.
Zero-trust policies
Our systems operate on a zero-trust basis. Every access request is verified, authenticated, and logged, ensuring maximum security at all times.
Multi-factor authentication
We require MFA for all access points to prevent unauthorized logins, even if credentials are compromised.
Backups and disaster recovery
Redundant backups and a robust disaster recovery plan ensure your data is safe and accessible, even in the unlikely event of a system failure.
Security policies on request
More information on our security policies can be shared upon request.
Transparent and explainable AI
Trust in AI depends on transparency and the ability to understand its decisions.
Auditable decisions
Every output produced by our AI systems is logged in a comprehensive audit trail to ensure compliance and accountability.
Minimize "black box" solutions
We prioritize explainability. To minimize the risk of hallucinations, we hand-write key decision-making logic and use AI only for use-cases that benefit, such as SQL generation, once we have high confidence in the initial recommendation.
Human-in-the-loop
Our AI features do not take any actions automatically. Outputs are provided as recommendations and used as direction-setting by our users, who apply their own judgement.
Secure by design
SELECT ensures the security and privacy of your data with the following additional safeguards.
Data siloing
Each client's data is processed in isolated, virtualized environments. This eliminates cross-contamination risks, ensuring that your data remains completely separate from other clients' information.
Failsafes and redundancies
Our systems are built with multiple layers of failsafes, including redundant storage solutions. These measures ensure that unauthorized access, data corruption, or unexpected outages are swiftly mitigated.
Real-time monitoring
We monitor systems 24/7, using advanced analytics to detect and respond to potential threats in real time.
Incident response plan
In the unlikely event of a security issue, we have a dedicated incident response team trained to contain, investigate, and resolve the issue quickly, minimizing any potential impact.
Committed to responsible AI
Questions about practices or security requirements? Reach out anytime.