The trust boundary
How it works
Deploy your workspace
One command sets up your private workspace on your own infrastructure — a laptop, an on-prem server, or a cloud cluster.
Ingest your datasets
Stage your training and test data locally. Metadata syncs to the platform so contributors can see what’s available — the raw data never moves.
Contributors submit and train models
Each model is scanned for vulnerabilities, then trains against your data in an isolated container, on your hardware.
What stays, what leaves
| Data | Shared with the platform? |
|---|---|
| Raw training & test data | Never — it stays on your infrastructure |
| Dataset metadata (schema, row counts) | Yes — so contributors know what’s available |
| Training & evaluation results | Yes — the metrics models are judged on |
| Trained model weights | Only if you allow it — your choice per collaboration, set in the admin panel |
The mental model:
1 machine = 1 workspace = n datasets. One deployment per machine; as many datasets inside it as you like.Vocabulary
| Term | What it is |
|---|---|
| Workspace | Your private, dedicated AI environment — tracebloc’s software running on your own infrastructure, where you invite contributors to train models on your data |
| Client ID | The credential that connects your workspace to the platform (created on the clients page) |
| Dataset | Data you’ve staged locally for use cases |
| Use case | A task contributors build models for, against your datasets |
| Contributor | An external data scientist who submits models — and never sees your raw data |
What it touches
The installer changes only Docker and~/.tracebloc on your host — no system-wide changes. Uninstalling is a single command, and your data is yours throughout.
Get started
Quick Start
A running workspace in about 10 minutes, with one command.
Deployment environments
Deploy on local / k3d, bare-metal, EKS, AKS, or OpenShift.
Want the guarantees in detail for your security team? See Security & data handling.