Privacy policy

Lianas is operated by Aurioa Tech, the data controller for the personal data described in this policy. For any privacy-related question or request, contact contact@aurioa-tech.com.

• Account data: email address, display name, and a hashed password (bcrypt). If you sign in with Google, we receive your email and name from Google.
• Conversations: the messages you exchange with Lianas, with titles and timestamps.
• Memory: facts extracted from your conversations (entities and relations) that form your context graph.
• Voice audio: if you use voice input, the audio is transcribed and then discarded; only the transcription is kept as a message.
• API keys: if you bring your own keys, they are stored encrypted (Fernet) and are never logged or exposed.
• Settings: voice and provider preferences, custom instructions.
• Technical data: IP addresses, used only for rate limiting and abuse prevention.

We do not sell your data, use it for advertising, or use it to train AI models.

• Providing the service (performance of contract): answering your messages, maintaining your memory and history across sessions.
• Security (legitimate interest): login lockout and rate limiting based on IP addresses.
• Optional external providers (consent): only when you configure them yourself.

By default, AI processing (language model, speech-to-text) and storage run on Infomaniak's sovereign infrastructure in Switzerland, under the Swiss Federal Act on Data Protection. Embeddings are computed locally on our server and never leave it.

In the default configuration, two services are exceptions:

• Voice synthesis: response text is sent to Microsoft (Edge TTS) to generate audio.
• Web search: search queries are sent to Tavily (US).

If you bring your own API keys (OpenAI, OpenRouter, ElevenLabs, Tavily), your messages or audio transit to those providers under their own privacy policies. The app indicates when data leaves Swiss infrastructure. See the transparency report for the full data flow.

• Conversations and memory: until you delete them (individually or by wiping all memory).
• Account data: until you delete your account, which removes your data. We also delete inactive accounts automatically: after 6 months without use we email you a notice, after 11 months a deletion warning, and after 12 months of inactivity the account and its data are permanently deleted (never less than two weeks after the warning). Any use of the service (signing in, or any authenticated activity) resets this cycle at any time.
• Security audit log: raw prompts and responses are kept in an append-only security audit log to detect abuse and prompt injection. These are removed when you delete the conversation, or when you delete your account.
• Rate-limiting data: IP-based counters expire automatically within minutes.

Under the GDPR and the Swiss FADP you can access, rectify, delete, and export your data, restrict or object to processing, and lodge a complaint with your supervisory authority. Most of these rights are exercisable directly in the app: view your context graph, delete individual facts or conversations, wipe all memory, export conversations as markdown, and delete your account from settings.

For anything else, write to contact@aurioa-tech.com.

Passwords are hashed with bcrypt, API keys are encrypted at rest with Fernet, transport is encrypted with TLS, and authentication endpoints are protected by per-account and per-IP rate limiting.