Transparency & Security

Responsible by
Design.

MWire Labs is committed to security, responsible AI development, and data privacy, not as compliance checkboxes, but as foundational requirements for building AI that serves communities.

Security & Compliance

CERT-In OEM Guidelines

Compliant with Version 1.0 (June 2026). Vulnerability assessment, patch timelines, and 6-hour mandatory incident reporting under CERT-In Directions No. 20(3)/2022-CERT-In.

GIGW 3.0

All government portal deliverables comply with Guidelines for Indian Government Websites v3.0 — accessibility, security, and multilingual support throughout.

Vulnerability disclosure

Responsible disclosure policy active. Report issues to connect@mwirelabs.com with subject “Security Disclosure”. We acknowledge within 24 hours.

Secure development

Brute force protection, session management, rate limiting, SQL injection prevention, CSRF protection, bcrypt hashing, and OWASP security headers applied across all deployments.

Responsible AI

Documented limitations

Known failure modes; script leakage, domain specificity, low-resource gaps, are disclosed in every model card and paper. We don’t hide where models struggle.

Peer-reviewed research
Every model release is backed by a submitted or accepted paper at ACL, EACL, EMNLP, or equivalent. Independent peer review is how we validate our work.
Community consent
All training data collected from communities is done with informed consent. Data sourcing and speaker attribution is documented in every dataset release.

Bias awareness

Low-resource models carry unique bias risks from sparse training data. We document these explicitly rather than presenting inflated performance numbers.

No misuse facilitation
MWire Labs does not fine-tune, license, or deploy models for surveillance, targeted political messaging, or content designed to harm communities.
Open licensing where possible
CC-BY-4.0 across all foundational research models. Open access means open scrutiny — anyone can inspect, evaluate, and critique our models freely.
 

Data & privacy

DPDP Act 2023
Compliance ahead of deadline.
 
MWire Labs processes personal data per the Digital Personal Data Protection Act 2023 and DPDP Rules 2025 (notified 13 November 2025). Full enforcement is expected May 2027. We are implementing ahead of that timeline — not waiting for the deadline.
Your rights
Access, correct, erase
 
You have the right to access, correct, and request erasure of personal data held by MWire Labs. Submit requests to connect@mwirelabs.com — we respond within 72 hours. A designated grievance contact handles escalations at the same address.
Data principles
Minimal. No ads. No selling.
 
We collect only what is necessary for the stated purpose. No personal data is sold to third parties. No advertising data collection. Government contract data is handled per contractual governance terms — on-premise deployment available for sensitive environments.