Trusted AI

AI Act

Oddity.ai is classified under the "Other AI systems" category of the EU AI Act, which means it is not high-risk. Our system:

Uses no biometric data such as facial recognition.
Processes video anonymously, focusing only on movement patterns.
Keeps a human in the loop: alerts support staff, they decide the response.
Avoids profiling or prediction: no risk scoring, no behavioral forecasts.
Is not a medical device under EU MDR or US FDA rules, since it is built for safety/security, not diagnosis or treatment.

Oddity is designed to protect, not profile, ensuring compliance with the AI Act while empowering vulnerable populations.

GDPR

Oddity.ai is developed with privacy by design and data minimization at its core. Key GDPR principles we follow:

Anonymization: Metadata never includes personal identifiers. Video is only stored if an alert occurs.
Transparency: Customers control retention settings and can request stricter limits.
Data minimization: No continuous recording, only short clips linked to alerts.
Security: All data is encrypted in transit and at rest, with strict access controls.
Accountability: We provide clear documentation and safeguards, enabling organizations to meet GDPR obligations with confidence.