Legal
ORA is built to be transparent. These documents explain how we operate, protect your data, and govern our AI agents. Questions? Email info@3d3d.ca.
Rules governing use of ORA. Data rights, liability limits, acceptable use.
What we collect, what we don't, how we use it. No training on your data.
How ORA agents work, capabilities, limitations, and human oversight mechanisms. FTC & EU AI Act compliant.
What ORA may and may not be used for. Prohibited uses and enforcement.
GDPR Article 28 processor agreement for EU customers.
Encryption, access controls, incident response, and vulnerability disclosure.
Capabilities, limitations, performance, and bias disclosures for each ORA agent.
Minimal cookie use. Analytics are cookie-free (Cloudflare).
NIST AI RMF alignment. Colorado/Texas safe harbor documentation. EU AI Act classification.
How security incidents are detected, contained, and disclosed.
Third-party services that process data to deliver ORA.
Regulatory status across PIPEDA, GDPR, FTC, EU AI Act, Colorado, Texas, and more.
Need a signed DPA, security questionnaire responses, or custom compliance documentation for vendor assessment? Contact info@3d3d.ca.