Privacy Policy
Last Updated: December 2025
1. The Core Promise
PrivAI is designed with a "Sovereign Architecture." Unlike standard AI services, the "brain" (Inference Engine) runs on our own local hardware, not on a public cloud API. We do not sell your data, and we cannot read your saved chats.
2. Data We Collect & How We Store It
We collect the minimum amount of data required to function:
- Account Credentials: We store a hashed version of your password. We do not require or store emails or phone numbers.
- Chat History: If you choose to save chats, they are encrypted Client/Worker-Side using AES-256 (Fernet) before being written to our database (Firebase). The database administrator sees only encrypted text blobs.
- Usage Telemetry: We track the count of messages sent to monitor system load. We do not log the content of messages for analytics.
3. Web Search & Third Parties
To provide real-time information (e.g., "Web Search" or "Deep Research"), PrivAI must fetch data from the internet. This is the only time data leaves our local environment.
- Search Queries: When you ask a question requiring web access, an optimized, anonymized search query is generated.
- Providers: This query is sent to Serper.dev (API) or accessed via DuckDuckGo/Google using an automated browser.
- Data Hygiene: We strip personal identifiers from the query before sending it to these providers. However, the search providers may see the keywords you are searching for (e.g., "OzBargain deals").
4. Guest Mode
If you use PrivAI without signing in, the session is ephemeral. No chat history is written to the database. Once you close the tab or refresh, the data is permanently erased from the local browser state.
5. Hosting
The web interface is hosted on Render. The database is hosted on Google Firebase. The AI inference worker is hosted on Private Hardware in Australia.