Are you a system of record?

No. Archivers.ai is an AI processing and access layer. It generates and holds draft metadata during processing and review, and it powers staff Explore and public-facing discovery. Your repository, collections management system, or preservation platform (AtoM, ArchivesSpace, Axiell, Modes, Adlib, Preservica, Archivematica, or your own CMS) remains the authoritative system of record.

This is a deliberate design choice. We do not ask you to migrate off a system you already depend on. We ask you to let us process digitised backlogs, map to your standards, and export cleanly into what you already run.

Where is data stored?

Customer data is stored on infrastructure operated in accordance with UK and EU data-protection expectations. Storage region can be discussed as part of onboarding for institutional plans, particularly where specific residency requirements apply.

Data in transit is encrypted using TLS. Data at rest is encrypted on the underlying storage. Access to production data is restricted to named staff and logged.

Where does AI processing happen?

Whose AI reads your archive matters — particularly for public-sector and GDPR-sensitive collections. Archivers.ai is built on a European core: optical character recognition, photograph and object metadata, and audio/video transcription run on a European model provider (Mistral, based in France). Description, grounding, and reasoning tasks may use additional providers chosen for capability and for strong responsible-operations and no-training commitments.

For GDPR-sensitive collections we can run an EU-only processing mode, keeping AI processing within the EU, and provide a data-processing agreement (DPA) as part of the project. If your information-governance team needs a specific residency or processing guarantee, raise it with us and we will confirm what we can commit to in writing.

This is part of why Archivers.ai fits public-sector procurement: an auditable processing pipeline, named sub-processors, a DPA, and the option to keep AI processing inside the EU — rather than a black box routed through whichever model is cheapest that week.

Who owns the data?

You do. Customer collections, source files, generated draft metadata, reviewed metadata, exports, and audit history belong to the customer. Archivers.ai acts as a processor of that data. We do not claim any ownership of your collection, your metadata, or your exports.

Is customer data used to train models?

Customer collection data is not used to train foundation AI models. We follow the no-training commitments offered by our AI model providers for business and enterprise usage. Where a specific provider policy is relevant to a procurement process, we will share the applicable terms as part of that process.

Aggregated, non-identifying operational metrics (processing volumes, error rates, system health) are used to improve the platform. No customer metadata, file content, or imagery is included in those metrics.

How is data deleted?

You can delete your data at any time. Deletion takes effect promptly in the working copy, and in backups and operational stores within a defined retention window, after which the data is unrecoverable.

At project end, or at customer request, we will:

  • export a final copy in agreed formats (EAD3, BagIt with PREMIS, Dublin Core, CSV, etc.);
  • confirm deletion of working data;
  • confirm deletion of backup copies within the retention window.

What formats can be exported?

Every record processed in Archivers.ai can be exported into one or more of the following open, standards-based formats:

  • EAD3 finding aids (XML)
  • BagIt packages with PREMIS provenance
  • Dublin Core
  • AtoM import CSV
  • ArchivesSpace import CSV
  • Archivematica transfer metadata
  • SPECTRUM-aligned records for museum workflows
  • JSON and Markdown for integration and publishing pipelines

See the Export formats page for annotated examples, and Standards for the underlying schema work.

What is the review model?

Archivers.ai is built on the principle that nothing is published without archivist review. Every AI-generated description is a draft until a human reviewer has signed it off. The platform surfaces confidence flags, source evidence, and the AI rationale for every suggestion, so reviewers can make informed decisions quickly.

For institutional plans we agree review policies during onboarding — for example, mandatory review for all records in a fonds, sampling-based review for low-risk material, or stricter review for PII-sensitive material.

What AI models are used, in broad terms?

Archivers.ai uses a small set of well-known large language and vision models to generate draft metadata. The platform is model-agnostic at the application layer: the specific model used for a given task can change as better or more appropriate options become available, and different tasks (text, image, audio) may route to different models.

We prefer providers with strong business-use no-training commitments and transparent safety practices, and we prefer European-based providers where the capability fit is equivalent. For any institutional customer, we will disclose the specific models in use on request as part of procurement.

How do confidence flags work?

Every AI-assisted field carries a per-field confidence indicator based on signals from the underlying model and any supporting evidence (e.g. OCR quality, entity recognition certainty, image classification score). Confidence is shown alongside the suggestion in the review UI, so archivists can prioritise their attention on the fields that matter most.

Confidence flags are advisory. They do not replace archivist judgement, and the platform does not treat any field as “auto-approved” on the basis of a high confidence score.

What is recorded in the audit trail?

For every record, Archivers.ai records provenance for AI-assisted fields including model, timestamp, and review state. This includes:

  • who created and reviewed each field;
  • when AI processing ran and which model family was used;
  • the raw AI suggestion and any manual override;
  • export history and export targets.

Provenance travels with the record on export — for example, recorded in PREMIS events inside a BagIt package, so that downstream systems can see that AI-assisted cataloguing was used, how it was reviewed, and by whom.

Account security & access

Access to the platform is protected by standard account controls:

  • two-factor authentication (2FA), including app-based and SMS options;
  • organisation workspaces with per-user roles, so reviewers, cataloguers, and administrators see only what they should;
  • encryption in transit (TLS) and at rest;
  • production access restricted to named staff and logged.

For Institution and Enterprise plans we can discuss additional requirements — SSO (rolling out), IP restrictions, or specific authentication policies — as part of onboarding.

What sub-processors are involved?

Archivers.ai relies on a small, declared set of sub-processors:

  • cloud infrastructure for compute and storage;
  • AI model providers for language, vision, and transcription tasks;
  • transactional email and analytics for account and product telemetry.

The current list, with purposes and data scope, is shared under NDA for institutional procurement processes. We notify customers of material changes to the sub-processor list before they take effect.

Accessibility commitments

We aim for the Archivers.ai platform UI and any public-facing access products (staff Explore, public discovery portal) to meet Web Content Accessibility Guidelines (WCAG) 2.2 at Level AA as the working target. Where a component does not yet meet that bar, we will say so and share the known gaps, rather than overclaim.

For funded digitisation projects that have specific accessibility requirements, we incorporate those into onboarding and export profile configuration.

What happens if we leave?

You can leave at any time. Because Archivers.ai is not the system of record and every record exports in open formats, there is no lock-in at the data layer. On exit:

  • you export your data in the agreed formats;
  • your exports sit in your repository, CMS, or preservation system — exactly where they would have been anyway;
  • we delete working copies and honour the backup retention window;
  • we provide a written confirmation of deletion for your records.

Ask a procurement question

If you need a specific answer for an IG, IT, or procurement process (DPIA, DPA, sub-processor list, security questionnaire, accessibility statement), the fastest route is to get in touch and tell us which documents you need.

Join the waitlist   How we use AI