Skip to content
Aiva

Privacy & data handling

Aiva is built trust-first. This page summarises how we handle your data.

No training on your data

We never train models on your content. You can confirm and lock this in the Trust Centre with the no-training toggle (on by default).

Minimal scopes

We request the least access needed to do the job. Mailbox tokens are stored in an encrypted token vault (AES-256-GCM) and are only used to read, draft, and — with your explicit approval — send.

You approve everything

Aiva proposes; you dispose. High-risk actions (refunds, payments, anything irreversible) are always approval-only and can never be automated.

Full audit & control

Every action Aiva takes is written to an append-only audit log with its inputs and reasoning. You can export all of your data or delete your account and data at any time from the Trust Centre.

Excluded contacts

Mark any contact private to exclude their conversations from memory and from any Aiva action.

Questions? Email no-reply@tryaiva.io.