Privacy Policy

The short version:

• We collect only what we need to run your account.
• The content of your conversations stays on your device. We never see what you ask the assistant or what files it touches.
• We never sell your data, and we never use it to train AI models.
• You can download everything we have on you and delete your account at any time from inside the app.

The rest of this document is the long version, mostly for regulators and people who want the specifics.

Aivont ("we", "us", "our") is a desktop personal AI assistant. This Privacy Policy explains what personal data we process when you use the Aivont website (aivont.com) and the Aivont desktop application ("the Service").

We are the data controller for the personal data described here. For privacy questions or to exercise any of your rights, contact [email protected].

We collect three categories of data:

A. Account information (required to use the Service)

• Your email address
• A display name (optional)
• Authentication credentials (passwords are never stored in plaintext; if you enable two-factor authentication, the related security data is stored in a way that lets us verify your codes without exposing them)
• Sign-in metadata for active sessions (device label, time of last use) so you can review and revoke devices
• If you sign in with a third-party identity provider, we receive a limited identifier and your email address from that provider

B. Billing information (only if you subscribe or purchase credits)

• A reference to your record with our payment processor and your subscription status
• Your plan and credit balance
• We do not store your full card number or security code — those are held by the payment processor

C. Service operations data (used to run the Service reliably and prevent abuse)

• Usage counters (turns, credits consumed, model tier used). Conversation content is not logged.
• Diagnostic logs and crash reports, with identifying details removed before storage.
• Security events such as sign-in attempts and account actions. Any IP-derived information is irreversibly transformed before storage — raw IP addresses are not retained.
• If you apply for the beta program: the answers you submit and a small amount of abuse-prevention metadata.

What we explicitly do not collect:

• The content of your conversations with the assistant
• The contents of files Aivont reads or writes on your machine
• The text of commands you run through the assistant
• Audio recordings from voice mode (transcription happens in real time and audio is not retained)
• Your memory entries (those stay on your device)

Aivont is a desktop application backed by a thin server. The split is intentional and is the core of our privacy posture:

On your device (never sent to us):

• Conversations, messages, and tool-call history
• Memory facts and preferences
• Skills and integrations you configure, including any related credentials
• Scheduled tasks

The on-device store is encrypted at rest using a key held in your operating system's secure credential store.

On our server:

• Account and billing data (Section 2A and 2B above)
• Service operations data (Section 2C above)

We process each category for specific, limited purposes:

• Account information — to authenticate you, secure your sessions, and notify you about account-relevant events.
• Billing information — to process payments, manage your subscription, and meet our tax and accounting obligations.
• Service operations data — to run the Service reliably, prevent abuse, debug issues, and meet our security obligations.
• Beta application answers — to decide whether to invite you into the beta. Reviewed by humans on our team and not shared externally.

Legal bases (GDPR Article 6):

• Performance of contract for account and billing data
• Legitimate interests for security and abuse prevention
• Legal obligation for tax records and fraud prevention
• Consent for anything optional that goes beyond the above

What we never do: we never sell personal data, we never share it with advertisers, and we never use the content of your conversations or your data to train AI models — ours or anyone else's.

We rely on a small number of carefully selected service providers to operate Aivont. They process personal data only on our instructions and only as needed for the function they perform. The categories of providers we use include:

• AI model inference (your prompts are passed through in real time for processing; conversation content is not retained by us)
• Speech-to-text when you use voice mode (real-time transcription; audio is not retained)
• Web search providers used by the assistant's search tool
• Payment processors for subscriptions and credit purchases
• Infrastructure and content-delivery providers for hosting, DNS, and bot protection
• Transactional email delivery
• Error monitoring (with identifying information removed before send)

If you sign in with a third-party identity provider, you also have a relationship with that provider, governed by their own privacy policy.

A current list of the specific sub-processors we use is available on request to [email protected].

• Account data: for as long as your account is active, plus a short window after deletion to recover from accidents.
• Billing records: retained for the period required by applicable tax and accounting law.
• Service operations data: a short rolling window, then automatically purged.
• Authentication sessions: revoked automatically after a period of inactivity.
• Beta application answers: a limited period from submission.

We use a combination of technical, organizational, and operational safeguards appropriate to the sensitivity of the data, including:

• Industry-standard encryption in transit and at rest
• Strong password handling — we never see or store your password in plaintext
• Optional two-factor authentication for all users, required for staff with administrative access
• Step-up authentication on sensitive account actions
• Rate limiting and abuse detection
• Strict role separation between application code and operations
• Logging and review of staff actions affecting user accounts

No system is perfect. If you discover a vulnerability, please email [email protected] — we follow a coordinated-disclosure policy and credit good-faith researchers.

If you're in the EU/UK (GDPR), California (CCPA/CPRA), or any jurisdiction with similar protections, you have the following rights:

• Access — download a copy of the personal data we hold about you. Self-service from Account → Privacy.
• Rectification — edit your profile, email, and password from Account.
• Erasure — delete your account at any time from Account → Privacy → Delete account.
• Portability — receive your data in a structured, machine-readable format (same export as above).
• Restriction or objection to processing — email [email protected].
• Withdraw consent at any time for processing based on consent.
• Not be subject to solely-automated decisions — material account decisions (such as beta admission) are reviewed by humans.
• Lodge a complaint with your local supervisory authority. We'd appreciate a chance to fix it first.

We respond to verified requests within 30 days. For California residents, we honor "Do Not Sell or Share" — though we don't sell or share personal data for cross-context behavioral advertising in the first place.

The aivont.com website uses only strictly necessary storage for your sign-in session and short-lived bot-protection cookies on the signup form. We do not use marketing or advertising cookies, behavioral trackers, fingerprinting, or third-party analytics. The desktop application uses no web cookies at all.

Where personal data is transferred outside your region of residence — for example to providers based in other countries — those transfers are made under appropriate legal safeguards, including Standard Contractual Clauses or equivalent transfer mechanisms.

Aivont is not directed at children under 13 (under 16 in the EU). We don't knowingly collect personal data from children. If you're a parent or guardian and believe a child has signed up, contact [email protected] and we'll delete the account.

We may update this policy as the Service evolves. Material changes will be announced inside the app and by email. The "Last updated" date at the top reflects the most recent revision.

For privacy questions or to exercise any of the rights above:

Privacy: [email protected]
Security disclosure: [email protected]
General support: [email protected]