The TEE network
Pooled compute runs on a network of confidential-compute TEEs. A TEE decrypts data only when a job is approved onchain, runs approved code over it, and returns results — without the operator, or the builder, ever seeing the raw data. This confidentiality rests on the integrity of the hardware enclave and its attestation, which places trust in the hardware vendor.The three stages
| Stage | What it does |
|---|---|
| Data Ingest | Validates contributed data and admits it to a pool, recording contribution onchain |
| Data Compute | Runs privacy-preserving jobs over the pooled, encrypted data inside TEEs — raw data never leaves the enclave |
| Data Access | Runs query jobs over the pooled dataset and returns only results (e.g. aggregates, a trained model) |
How it interoperates
- Same identity — contributors and consumers are the same wallet-based identities the rest of the protocol uses.
- Same permissions model — a job runs only when access is approved onchain.
- DLP contracts on the DP RPC coordinate pools, contributions, and access.
- Data added through individual portability can later be contributed to a pool — the two paths share storage and identity.
- Verifiable contribution — each contribution carries metadata and a proof of contribution (see Provenance): a commitment to the data and an attestation of where it came from, so a pool can verify a member contributed eligible, genuine data before it is admitted — without the pool seeing the raw data.
Building a DataDAO
A builder creates a DataDAO with the same tools as any other integration: the SDK, whose functions call the DP RPC — there is no special chain access to wire up. The DLP contracts coordinate the pool itself: membership, contributions, and the decisions made over the pooled dataset. What makes this a DataDAO — and not just an app that collects everyone’s exports into its own database — is where the data and the control sit:- Members port data the normal way. Each contributor’s data is collected under their own control, stored encrypted in their own hosted storage, and accessed through their own Personal Server.
- The pool never holds plaintext. Instead of granting the DataDAO plaintext access to a scope, contributed data is encrypted to a key controlled by Protocol-Governed Encryption and coordinated by the DataDAO — so access to the pooled data can only happen through on-chain permissions, never by the operator’s own hand. The DataDAO operator never sees the raw data.
- Contributions are verified, not inspected. Metadata and proof of contribution (above) let the pool admit genuine data without reading it.
- Use is decided collectively. When the pooled dataset is put to work — licensed as a dataset, or better, used to train a model — the members decide, and the approved job runs as confidential compute: the consumer receives results, and raw data never leaves the enclave.
Status. The building blocks — TEE execution, data refinement, and querying — are in place. Pooled, multi-source confidential jobs are on the protocol’s roadmap, and the DataDAO access model described above — pool data encrypted to a PGE-controlled key, with collective decisions over its use — is a design direction whose protocol primitives are still being designed.