Privacy & Security

Local-First Architecture

ARIA stores everything locally — your profile, chat history, uploaded documents, and generated files never leave your computer. The only data sent externally is the content of your current conversation to Anthropic’s Claude API.

What Stays on Your Computer

• Family profile (name, diagnosis, variant, insurance)
• All chat history and conversations
• Uploaded documents (PDFs, medical records, genetic reports)
• Generated documents (appeal letters, forms)
• Knowledge base indices
• Wearable device data

What Goes to External Services

• Your messages + profile context → Anthropic (Claude API)
• Search queries → PubMed, ClinVar, ClinicalTrials.gov
• Protein sequences → NVIDIA NIM (only when you run a tool)

API Key Security

Your API keys are stored using Electron’s safeStorage, which encrypts keys using your OS secure enclave (Windows DPAPI or macOS Keychain). Keys are never stored in plain text config files.

Anthropic’s Data Policy

API users’ data is not used to train Anthropic’s models by default. Anthropic may retain API inputs/outputs for up to 30 days for safety monitoring.