Privacy & data handling
Aiva is built trust-first. This page summarises how we handle your data.
No training on your data
We never train models on your content. You can confirm and lock this in the Trust Centre with the no-training toggle (on by default).
Minimal scopes
We request the least access needed to do the job. Mailbox tokens are stored in an encrypted token vault (AES-256-GCM) and are only used to read, draft, and — with your explicit approval — send.
You approve everything
Aiva proposes; you dispose. High-risk actions (refunds, payments, anything irreversible) are always approval-only and can never be automated.
Full audit & control
Every action Aiva takes is written to an append-only audit log with its inputs and reasoning. You can export all of your data or delete your account and data at any time from the Trust Centre.
Excluded contacts
Mark any contact private to exclude their conversations from memory and from any Aiva action.
Questions? Email no-reply@tryaiva.io.