Security & Trust Center

Persona AI was built on a "Local-First" and "Bring Your Own Key" philosophy. We believe your AI identity—and the keys that power it—should remain yours.

🔑

Bring Your Own Key (BYOK)

Unlike traditional SaaS platforms that act as a middleman, Persona AI connects directly to AI providers using your personal API keys.

  • Full Ownership: You retain full control of your usage and billing with OpenAI, Anthropic, and Google.
  • Instant Revocation: You can revoke access instantly by rotating keys at the provider level.

Encrypted Data Flow

USER_BROWSERDATABASEPROVIDER
> User enters key profile
> AES-256-GCM Encryption (At-Rest)
> RAM-Only Decryption for signing requests
🛡️

Military-Grade Encryption

We utilize **AES-256-GCM** (Galois/Counter Mode). This provides both data confidentiality and authenticity, ensuring your keys cannot be read or tampered with.

const cipher = crypto.createCipheriv('aes-256-gcm', key, iv);

Live Database Preview

Encrypted Payload e7b9...f2a1 (Unreadable Ciphertext)
Integrity Tag f2a1... (GCM Auth Tag)

In-Memory Only

Keys are decrypted only for the milliseconds required to sign an API request. They are never written to disk in plaintext.

🤝

Provider Privacy

We maintain a strict zero-training policy. Data sent via your APIs is subject to the provider's privacy settings.

🗑️

Total Erasure

Deleting an agent or key profile permanently wipes all associated history and credentials from our database instantly.