Security & privacy in Helix Studio.

Enterprise teams ask about telemetry, offline support, and supply-chain integrity on day one. Here are the answers we provide upfront.

Telemetry

Diagnostics are opt-in. Desktop + CLI build with telemetry disabled; enabling requires explicit toggle + consent.

When disabled, nothing leaves your network.

All models and binaries cache locally so air-gapped labs can run Helix Studio with no outbound calls.

Downloads page includes SBOM + checksum to mirror internally.

Each build is signed and ships with SHA-256 + SPDX SBOM. Verification commands are published on the Downloads page.

Request detached signatures for internal notarization.

We store pilot data in encrypted buckets with 30-day retention by default. Delete-on-request available any time.

No runtime sequence data is used to train models without permission.