| ▲ | themafia 2 hours ago | |
> Custody of the data remains with the customer. Yea.. like.. how, though? Here are their setup instructions. It seems pretty clear what is happening to your data, and an unqualified statement that you maintain some nebulous idea of "custody" seems oblivious to even simple risk. https://www.palantir.com/docs/foundry/data-connection/initia... This isn't even getting into their "forward deployed software engineers" or how that whole aspect of their "product" works. | ||
| ▲ | WatchDog 2 hours ago | parent [-] | |
You can run it on-prem, where you can actually technologically enforce data custody. Custody enforcement using the cloud hosted product, is mostly contractual, although they do offer some technical features, like encrypting all data using a AWS KMS key in the customer's AWS account. Still, this relies on trusting that they won't make their own separate copies of the data. | ||