Skip to main contentSkip to footer
For agents
For agents

Trust and data handling

What the MCP endpoint reads, writes, and never stores — the full data handling contract.

Public vs protected

What is sent

Read-only tools (list_clusters, get_principle, search_examples, etc.) send only the structured query parameters you pass — slug strings, search queries, and filter values. No prompts, no code, and no file contents are transmitted. The server receives the JSON-RPC method call and its declared parameters only.

What is stored

Signal tools (report_value_event, submit_feedback) write only the structured fields you explicitly pass. No context from surrounding tool calls is stored. Anonymous calls are not associated with any user identity unless an authenticated session header is present. See the privacy policy at aidesignblueprint.com/en/privacy for full detail.

Signal tools — opt-in only

report_value_event and submit_feedback are never called automatically or silently. They are offered at most once per session, only after a clear user success signal, and only if the user explicitly consents. Agents must not call signal tools without user confirmation.

Data handling
Explicit. Opt-in. Local-first.

Static files send nothing. MCP retrieval tools are read-only lookups. Feedback tools only run when your agent surfaces them and you confirm. Code passed to the validation tool is processed transiently by an external LLM provider and is not retained by AI Design Blueprint as raw implementation context. Full details in our privacy policy.

Privacy policy
Freshness

Generated at

15 April 2026

Content version

365d718b

Build details

365d718b8830644a83b3270a85bbd886189021f0

What data do the feedback and validation tools send?

report_value_event and submit_feedback send only the structured fields you explicitly pass — event type, rating, brief context note. No raw prompts, no file contents, no proprietary code. validate_agent_architecture sends code you provide to an external LLM provider during processing; it is processed transiently and is not retained by AI Design Blueprint as raw implementation context. Set private_session=true on validate_agent_architecture to skip all server-side logging for that validation call. Static instruction files (AGENTS.md, .mdc, copilot-instructions.md) are local files only — they send nothing.

Also in this section

MCP setupPublic vs protectedStart here