Aion
Aion Cognitive assistant

Aion Privacy Policy

Last updated: 2026-03-21

1. What Aion is

Aion is a memory-first assistant app for Android.

  • Aion’s main mode uses the user’s own AI provider key
  • Aion stores its memory and profile data on the device
  • There is no Aion-operated chat server in the shipped app path
  • Aion can also use optional on-device runtime features for users who want a more local setup

2. Contact

If you have privacy questions, contact: [email protected]

3. What Aion stores on your device

  • chat messages and conversation history
  • structured memory, including inferred facts, corrections, conflicts, and timeline events
  • episodic conversation summaries
  • profile settings and personalization
  • reminders and timers
  • journal entries
  • attachment references and document-derived memory
  • local runtime and model settings
  • crash reports stored locally after an app crash
  • profile exports or other files you explicitly generate and share

Sensitive credentials are also stored locally:

  • cloud API keys are stored using Android Keystore-backed protection
  • Gmail OAuth tokens are stored using encrypted on-device storage

4. What can leave your device

Some Aion features send data off device only when you use those features.

BYOK cloud mode

If you use Aion with your own cloud AI key, the app can send data directly from your device to the provider you selected. That can include your current message, selected recent turns, memory and timeline context, profile context, and selected attachments or documents when cloud analysis is used.

Gmail (planned — not active in current release)

Gmail integration is not active in the current release. When available in a future update, Aion will talk directly from the app to Google’s Gmail APIs using your granted token. No Gmail data will be routed through an Aion server.

Calendar

Aion reads and writes calendar data through Android’s calendar provider on your device. Calendar data is not sent to an Aion server.

Voice input

Aion uses Android speech-recognition services for voice input. Depending on the device and speech service, recognition may be handled locally or by the device’s speech provider.

User-initiated sharing

If you export or share a profile export, bug report, or similar file, that file leaves your device only because you explicitly chose to share it.

5. What Aion does not do in the current Android release path

  • Aion does not require an Aion account for core use
  • Aion does not proxy your chat traffic through an Aion-operated chat backend
  • Aion does not proxy Gmail through an Aion server
  • Aion does not proxy calendar access through an Aion server

6. Permissions Aion requests

  • INTERNET – direct requests to your chosen cloud AI provider
  • POST_NOTIFICATIONS – reminders, timers, and briefing notifications
  • RECORD_AUDIO – voice input and voice chat mode
  • READ_CALENDAR – read calendar events when you ask about your schedule
  • WRITE_CALENDAR – create, move, or cancel calendar events through Aion
  • CAMERA – take photos for image attachments in chat (requested only when you tap the camera button)
  • FOREGROUND_SERVICE – short background tasks such as reminder scheduling and memory maintenance
  • RECEIVE_BOOT_COMPLETED – restore scheduled reminders and briefings after a device restart
  • SCHEDULE_EXACT_ALARM – fire reminders and daily briefings at the exact time you set them

7. Memory, inference, and provenance

Aion can derive memory from things you say directly, repeated patterns in conversation history, and imported documents or attachments that appear to relate to you. Where supported in the app UI, Aion can show memory provenance, including where a memory came from and when it was learned.

8. Data deletion and control

  • clear a saved cloud API key
  • disconnect Gmail
  • forget individual memory items in supported flows
  • wipe active profile memory
  • archive or delete a profile
  • export a profile as an encrypted file with a user-chosen passphrase

9. Security practices

  • Android backup disabled for the app
  • encrypted storage for cloud API keys
  • encrypted storage for Gmail tokens
  • encrypted profile export with a user-chosen passphrase
  • release logging moved onto a sanitized path
  • debug/tester export tools disabled in public builds

Important notes:

  • Aion allows OS screenshots by default as a user-control choice
  • Users should not share an encrypted export file and its passphrase together

10. Retention

Aion generally keeps locally stored data until you delete it, wipe a profile, delete a profile, clear app data, or uninstall the app, subject to normal Android app-data removal behavior.

11. Children

Aion is not a child-directed product. Do not use Aion with children unless prepared to meet the additional policy and compliance requirements that apply to children and student data.

12. Policy changes

If Aion later adds hosted cloud features, sync, accounts, billing, analytics, or external crash collection, this policy must be updated before those features ship.