The family office, board, deal team, matter team or other closed group that engages Steward is the controller of the personal data it places into the workspace. ANA Wealth AG, trading as Steward, is the processor. The distinction matters: the controller decides why and how the data is processed; the processor executes those instructions and nothing else.
Our commitment is bounded by your instructions. Steward acts on the documented instructions of the controller as set out in the Data Processing Agreement and the configuration of the workspace itself — its House Rules, its permissions, its retention settings. We do not process the data for purposes of our own, we do not aggregate it across tenants, and we do not use it to inform any product decision beyond serving the controller who placed it there.
Where Steward retains a sub-processor to operate part of the service — most materially, PHOENIQS AG, which provides the hosting and inference infrastructure — that sub-processor is bound by terms back-to-back with the controller's own DPA. Section 03 of this page names that sub-processor explicitly.