Archevi
Back to Home

Privacy Policy

Last updated: February 23, 2026

Last updated: February 23, 2026 (v1.1 -- updated to reflect privacy-preserving AI architecture)

Archevi Inc. ("Archevi", "we", "us", or "our") is committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our service.

1. Information We Collect

Account Information

When you create an account, we collect your email address and a password. If you use passkey authentication, we store your public key credential (your private key never leaves your device).

Documents and Content

You choose which documents to upload. We process your documents to enable AI-powered search and extraction. Your original documents are stored encrypted on Canadian infrastructure and never leave our servers.

Usage Data

We collect anonymized usage data such as feature usage, AI query counts, and storage metrics. We use Umami for privacy-friendly analytics that does not use cookies or track individuals.

2. How We Protect Your Data -- Privacy-Preserving AI

Archevi uses a boundary anonymization architecture that protects your personal information during AI processing. Here is how it works:

Boundary Anonymization

When you ask a question, your query passes through a privacy layer before reaching any cloud AI provider. Personal names, email addresses, phone numbers, locations, and organization names are detected and replaced with realistic surrogate values. For example, "John Smith" might become "Alex Johnson" in the query sent to the AI. The AI processes the anonymized query and returns an answer using surrogate names. Archevi then restores the real names before showing you the result.

Hard Redaction

Certain sensitive data types are never sent to AI providers under any circumstances. These are permanently redacted from queries:

  • Social Insurance Numbers (SINs)
  • Credit card numbers
  • Bank account numbers
  • Passport numbers
  • Driver's licence numbers
  • IBAN codes

Hard redaction uses two layers: fast regex pattern matching followed by Microsoft Presidio Named Entity Recognition (NER) for comprehensive detection.

What This Means for You

Your real personal information never reaches cloud AI providers. The AI only ever sees surrogate data. Your documents themselves never leave our Canadian infrastructure -- only anonymized query text is sent externally for AI processing.

3. Data Security

We implement multiple layers of security to protect your information:

  • AES-256 encryption for data at rest
  • TLS 1.3 encryption for all data in transit
  • Database-enforced row-level security (RLS) ensuring complete family isolation
  • Two-factor authentication (TOTP) and passkey/WebAuthn support
  • Trusted device management with automatic session rotation
  • Single-use token rotation on every authenticated request

4. Canadian Data Residency

All documents and personal data are stored on infrastructure located in Canada. Your original documents never leave Canadian servers. Only anonymized query text (with personal information replaced by surrogates) is sent to cloud AI providers for processing.

5. Third-Party Services

We use the following third-party services, each with specific data handling:

  • Groq -- processes anonymized queries with Llama language models. Does not use data for model training. Zero data retention on inference. Only receives surrogate data, never real personal information.
  • Cohere -- powers semantic search with embedding models. SOC 2 Type II certified. Does not use data for model training. Only receives surrogate data.
  • Stripe -- payment processing. Receives only your email and payment information, never your document content.
  • Cloudflare -- CDN and security. Processes web traffic but does not access your stored documents.
  • DigitalOcean -- Canadian cloud infrastructure hosting.

6. PIPEDA Compliance

As a Canadian service, Archevi complies with the Personal Information Protection and Electronic Documents Act (PIPEDA). You have the right to:

  • Access your personal information held by Archevi
  • Request correction of inaccurate information
  • Withdraw consent for data processing
  • Request deletion of your account and all associated data

Upon account deletion, all your documents, conversation history, anonymization vaults, and personal data are permanently deleted. We retain only anonymized billing records as required by law.

7. Data Retention

Your documents are retained for as long as your account is active. AI query logs are retained for 90 days to support usage analytics and then permanently deleted. Upon account deletion, all personal data is removed within 30 days.

8. Cookies and Tracking

We use only essential cookies to maintain your authentication session. We do not use advertising cookies or third-party tracking. Our analytics (Umami) are privacy-friendly and do not use cookies or track individual users.

9. Children's Privacy

Archevi is not intended for use by children under 16. We do not knowingly collect personal information from children. If you believe a child has provided us with personal information, please contact us to have it removed.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the new policy on our website and updating the "last updated" date. Your continued use of the service after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at [email protected].

Back to Home

Questions? Contact us at [email protected]