Aletheiaby Lonia AI

Privacy

Your documents stay on your device.

Aletheia is built so that almost no data ever leaves your browser. This page explains what is processed locally, what is sent off your device only with your explicit choice, and the small amount of account data we do hold for paid tiers.

Last updated: 2026

On-device processing

The most important fact about Aletheia's privacy posture: your documents and the web pages you scan are processed in your browser. They are not uploaded to a server. They are not sent to a third-party service. They never leave your device unless you export them yourself.

Specifically, the following all happen entirely in your browser, with no network call:

  • Parsing PDFs, DOCX files, and other documents.
  • Running OCR on scanned image-only PDFs.
  • Restructuring page content into a properly headed, navigable form.
  • Identifying form fields and adding labels.
  • Writing the resulting accessible version to your browser's encrypted local storage.

AI image description data handling

Aletheia includes an optional AI vision feature for describing images that lack useful alt text. This is the only feature that sends data off your device, and it does so only with your explicit action.

  • Opt-in per image, or per session. No image is ever sent automatically. You either tap a button to describe a specific image, or you set a session-level default that you can disable at any time.
  • What is sent. Only the individual image bytes you chose, plus a short instruction asking for a description.
  • What is not sent. The page or document the image came from, your account email, the rest of your library, or any other identifier we do not have to send.
  • Retention. The image is not stored after the description is returned. It is not used for AI model training. It is not shared with any other party.
  • You can turn it off. Disabling AI image description leaves you with all of Aletheia's non-AI features (OCR, restructuring, form labeling) operating purely on your device.

Account data

The free tier does not require an account. Paid tiers require an account so we can apply the correct entitlements and process billing. The minimum we hold:

  • Email address (for sign-in and product communication).
  • Plan tier and renewal status.
  • Monthly scan count (to enforce the free tier's 10 page limit, where applicable).
  • For Student tier, a verified .edu domain on your email address. We do not record which institution.

Account data is stored by our authentication and billing providers. We do not store any of it on our own servers beyond what those providers expose to us through their dashboards.

Newsletter and waitlist

If you sign up for the Aletheia waitlist, we hold your email address for the sole purpose of telling you when Aletheia launches. We do not share waitlist emails with anyone. You can unsubscribe at any time, and we delete the entry on request.

No analytics, no tracking, no telemetry

The marketing site and the Aletheia product do not run third-party analytics, advertising trackers, session replay tools, or telemetry packages. Aggregate statistics, when we collect them at all, come from privacy-preserving server-side counters that record nothing about individual visitors.

GDPR and CCPA

The architecture makes most data-protection obligations trivial because the protected data is not held by us in the first place. Where account data is held, you have the rights you would expect under GDPR and CCPA:

  • The right to know what data we hold about you.
  • The right to correct inaccurate account data.
  • The right to deletion. If you request account deletion, we delete the account-level data we hold. We have nothing to delete on the document side because we never had your documents.
  • The right to portability. You can export your local library at any time directly from the product, without our involvement.
  • The right to object to processing.

To exercise any of these rights, email admin@lonia.ai.

Cookies

The marketing site uses no tracking cookies. The product uses only first-party browser storage strictly necessary for it to function (your local library, your preferences). It does not use cookies for cross-site tracking.

Children

Aletheia is not directed at children under 13 and we do not knowingly collect personal information from children under 13. The Student tier is intended for verified higher education students.

Changes to this policy

If we update this policy, we will update the "last updated" date at the top of the page. Material changes will be communicated to anyone with an active account or waitlist signup.

Contact and governing law

Questions, requests, or concerns about privacy can be sent to admin@lonia.ai.

This policy is governed by the laws of the State of New Jersey, without regard to conflict of laws principles.