Legal

Privacy Policy

Effective: May 24, 2026

Overview

Solaria is designed with privacy as a core principle. Your conversations are processed in real-time to generate AI responses and are never stored on our servers. They stay on your device. We do not use your data to train AI models.

What We Collect

Account information

If you create an account: email, display name, avatar (via Google OAuth). Guests are identified by a random ID stored in your browser.

Messages sent to AI

Your messages are sent to AI providers to generate responses. This is necessary for the Service to work. Messages are not logged or stored on our servers.

Documents, images, and URLs

When you attach PDFs, images, or URLs, the content is processed on your device and sent to AI providers to generate relevant responses. PDFs and images are not uploaded to our servers.

Web search queries

When you use Web Search, your query is sent to Tavily API to find relevant web results. The query is not stored by us.

API keys (BYOK)

If you provide your own API keys, they are encrypted (AES-256) and stored securely. We never share, view, or reuse your keys.

What We Do NOT Collect

  • Your chat conversations
  • Your PDF documents
  • Your images
  • Your web search history
  • Your browsing activity
  • Location data
  • Analytics or telemetry data

How Your Data is Processed

When you send a message, here's what happens:

1Your message is sent from your browser to our server
2Our server forwards it to the selected AI provider (OpenAI, Groq, Anthropic, etc.)
3The AI provider generates a response
4The response is streamed back to your browser
5The conversation is saved in your browser's local storage
6Nothing is stored on our servers after the response is delivered

Data Stored Locally (Your Device)

The following data is stored only in your browser and never sent to our servers:

Conversation historylocalStorage / chrome.storage
Conversation summarieslocalStorage / chrome.storage
Selected model preferenceslocalStorage
Guest IDlocalStorage
Theme preferencelocalStorage
Cookie consentlocalStorage

Clearing your browser data will delete this information. We have no way to recover it.

AI Providers We Use

Your messages may be sent to one of these AI providers depending on the model you select:

OpenAI (GPT-4o, GPT-4o Mini)
Anthropic (Claude Sonnet 4, Haiku)
Google (Gemini Flash, Pro)
Groq (Llama 3.3)
DeepSeek (V4 Flash, V4 Pro)
Cohere (Command R+)
Moonshot/Kimi (K2.6)
GLM/Z.AI (GLM-5)
Tavily (Web Search)

Each provider has their own privacy policy. We recommend reviewing them. We send the header x-do-not-train: true to request that your data is not used for training.

Data Stored on Our Servers

The only data stored on our servers (Supabase) is:

Email and display nameAccount management
Avatar URLProfile display
Subscription statusBilling (Free/Pro)
Encrypted API keysBYOK (AES-256)
Account metadataTier, preferences

Your Rights (GDPR / CCPA)

You have the following rights over your data:

Access

Export all your account data as JSON from your profile

Correction

Edit your name, email, and avatar at any time

Deletion

Delete your account and all associated data permanently

Portability

Export your data in a standard format (JSON)

To exercise these rights, go to your profile or contact us at privacy@solaria.im.

Data Retention

Active accountData retained while account is active
Deleted accountAll data permanently deleted within 30 days
Chat conversationsNever on our servers (stored locally only)
Guest dataStored locally, cleared when browser data is deleted

Security

We use industry-standard security measures including encrypted connections (HTTPS), hashed passwords, AES-256 encryption for API keys, and server-side validation to protect your data. We regularly audit our security practices.

Third-Party Services

We use the following services:

SupabaseDatabase & authentication
StripePayment processing
Google OAuthSign-in option

Cookies

We use essential cookies for authentication and preferences. We do not use tracking or advertising cookies.

View Cookie Policy →

BookmarkCollab Integration

If you use Solaria with the BookmarkCollab browser extension, you may enable RAG (semantic search) to use your bookmarks as context for AI responses. In that case, your bookmark embeddings are used to find relevant content. This is optional and only activated when you explicitly enable it. See the BookmarkCollab Privacy Policy for how bookmark data is handled.

Contact

Questions about this Privacy Policy or want to exercise your rights?

privacy@solaria.im

Changes to This Policy

We may update this Policy from time to time. We will notify you of significant changes. Continued use of Solaria after changes means you accept the updated Policy.