Security and Privacy

Your texts are your thoughts, ideas, and work. We treat them accordingly. Here is how LiveAI protects your data.

Authentication#

LiveAI uses Ory Kratos — an industrial-grade, open-source authentication server. This is not a homegrown system built from scratch, but a proven solution trusted by thousands of companies.

Sign-in methods:

• Email and password — the classic approach with email verification
• Google account — quick sign-in via Google

Account Protection#

• Passwords are stored in encrypted form (hashed, not plain text)
• Password recovery — via email
• Session management — you can see your active devices

Data Protection#

In Transit#

All data between your device and LiveAI servers is transmitted over an encrypted channel (HTTPS/TLS). No one along the way can read your documents.

At Rest#

• Documents are stored on servers with backup
• Integration credentials (such as Telegram bot tokens) are encrypted at the database level
• Payment data is processed by the payment provider — LiveAI does not store card numbers

During Collaboration (coming soon)#

Collaborative editing will operate through authenticated WebSocket connections. Only those you invite will be able to access the document.

Privacy and AI#

Comparison of data handling approaches with other services — in our comparison with ChatGPT.

What We Don't Do#

• We don't sell data — your texts are not shared with third parties for advertising or analytics
• We don't read your documents — only you and those you share with have access to your content
• We don't use your texts for training — your content remains yours

Offline Security#

When you work offline, documents are stored locally on your device. On desktop, they are kept in the application's protected storage. In the browser, they are stored via IndexedDB. Your data does not leave your device until you reconnect to the internet.

Next: FAQ →