pAI-Alpha Privacy Policy (v1.1)

This is the old revision of our privacy policy. Click to see the new one.

Updated 21 September 2025

pAI is based in Romania, European Union.

What we store on our servers

A random user ID we generate for you.
Google account identifier (provider_sub, a stable pseudonymous “sub” value) to link your sign-ins.
Rate-limit counters and usage limits (request_count/limit, reasoning_request_count/limit), ad-boost counters (daily_boosts_used_tier1/2/3), and timestamps used to reset those counters.
Refresh tokens (hashed) so you can stay signed in and rotate tokens securely. We do not store access tokens.
We do not store your chat content in our database.

How chat content flows

Encrypted Mode (recommended): Your device encrypts messages with ECDH + AES-GCM. Our server decrypts them temporarily to run the model, does not log or store the text, then re-encrypts the reply back to your device. Cloudflare (our edge provider) sees only ciphertext and basic metadata (IP, time, size).

Plaintext Mode: Your messages are sent over TLS like any normal API call and are visible to our server in memory while processing and may be visible to Cloudflare in transit. We still do not log or store the text.

WARNING: If pressured by law or authorities, we could enable logging on our server. Previous chats are not included, since they are not stored. Only future chats could be logged. Total server security cannot be guaranteed, though we take significant steps to protect it.

What third parties process

Google Sign-In: used only to verify your account and issue our tokens. Google receives standard auth metadata.
Google Mobile Ads (AdMob): if you watch ads for request boosts, Google may collect device identifiers, IP, coarse location, ad interactions and diagnostics per their policy.
Cloudflare: protects our edge; sees IP address and request metadata. In Plaintext Mode it can see content; in Encrypted Mode it cannot.

On your device

If you enable “Save chat,” conversations are stored locally on your device. You can delete them in the app.

We store minimal app settings (model choice, temperature, system prompt, theme, etc.).

Retention

Refresh tokens (hashed) up to 30 days or until you sign out; rotated on refresh.
Rate-limit/ad-boost counters reset roughly every 3 hours.
No server-side storage of chat content.

Security

TLS for all transport.
End-to-end encryption option with ECDH (client ↔ server) to keep Cloudflare blind to message contents.
We don’t sell personal data.