Skip to main content
Aletheia Customer Voice is Mnemom’s structured feedback feature. It collects responses from users interacting with Mnemom-monitored agents to improve detection accuracy, trust model calibration, and alignment quality. This page explains what data is collected, how it is used, how long it is retained, and how to exercise your rights.
This page does not constitute legal advice. It describes how Mnemom processes Customer Voice data. Consult qualified legal counsel for your specific GDPR obligations as a data controller or processor.
This section contains the exact copy shown in the product’s Customer Voice consent prompt, and this page is the authoritative “full details” destination that prompt links to. If you landed here directly, the link inside the disclosure below points back to this same page — the full privacy and data-use reference you are already reading.
Mnemom Aletheia — Customer VoiceWhen you submit feedback through Customer Voice, Mnemom collects your response, a pseudonymous session identifier, and the agent context at the time of submission. This data is used solely to improve Mnemom’s trust and alignment models. It is retained for 90 days (180 days on extended plans) and deleted on request. Full details and your rights →

What we collect

Data categoryExamplesCollection trigger
Feedback responseStructured rating, free-text commentUser submits a Customer Voice response
Session identifierPseudonymous session ID (sess-{uuid})Bound at session start; no direct link to a named user
Agent context snapshotAgent ID, active posture slug, verdict at submission timeCaptured on submission
Submission metadataTimestamp, Mnemom account ID (if authenticated), org IDCaptured on submission
What we do not collect: The content of agent conversations, tool call inputs or outputs, or any data from sources outside the Mnemom trust plane.

How it is used

Customer Voice data is used exclusively to:
  • Calibrate alignment verdict accuracy across agent types and use cases.
  • Identify false-positive and false-negative patterns in Safe House detection.
  • Improve reputation model signal quality.
Customer Voice data is not used to train AI models that serve other customers. It is not sold, rented, or transferred to third parties for their own purposes. It is not used for advertising.

Retention

PlanStandard retentionExtended retention
Free / Starter90 daysNot available
Pro90 days180 days (opt-in)
Enterprise90 days180 days (default)
The retention clock starts from the submission timestamp (submitted_at). After expiry, records are permanently deleted — there is no archive tier. Extended retention (180 days) applies when the org’s customer_voice.retention_days setting is set to 180. Full deletion schedule, phases, and audit trail details are documented in the Customer Voice retention policy.

Your rights

As the data subject (or the operator acting on behalf of users) you have the following rights:
RightHow to exercise
AccessExport Customer Voice submissions via GET /v1/orgs/{org_id}/customer-voice/export
Deletion (GDPR Article 17)Submit a deletion request via the GDPR deletion endpoint or DELETE /v1/orgs/{org_id}/customer-voice
CorrectionCustomer Voice responses are point-in-time records; correction is handled by deleting the original submission and re-submitting
PortabilitySubmissions export as structured JSON via the export endpoint
Deletion requests for Customer Voice data follow the same cascade phases and timeline as the agent deletion flow documented in GDPR Data Subject Rights. Requests complete within 5 minutes (p99).
Deletion is irreversible. Once a Customer Voice deletion request completes, the submitted responses and associated data cannot be recovered.
You may withdraw consent at any time through the Mnemom dashboard under Settings → Customer Voice → Disable. Withdrawal stops future collection immediately. Existing submissions are retained until their scheduled expiry unless a deletion request is also issued. Mnemom processes Customer Voice data on the basis of:
  • Legitimate interests (GDPR Article 6(1)(f)): Improving the accuracy and reliability of the trust plane that customers depend on.
  • Consent (GDPR Article 6(1)(a)): Expressed through the Customer Voice consent prompt shown before any data is collected.