Docs

Privacy model

Why OpenThena can't leak what it never stores.

OpenThena's privacy is structural. These guarantees come from how the app is built, not from a promise in a policy document.

What we never do

  • No database — conversations are never persisted server-side.
  • No accounts — there is nothing to sign up for.
  • No server logs of message content.
  • No analytics, fingerprinting, or advertising cookies.

Where your data lives

Your chat history is saved in your browser's localStorage under the key openthena.conversations.v1. It never leaves your device. Clearing a conversation — or your browser data — erases it permanently.

The only network call with your message is the streaming request to the model provider you configured. OpenThena adds no logging in between.

A note on providers

Your prompts are sent to the upstream model (e.g. Xiaomi MiMo) to generate a response. Their data handling is governed by their terms. For maximum control, route through a self-hosted LiteLLM proxy or a local model.