Privacy Policy
Last updated: February 21, 2026
- We collect what's needed to run Lia: your profile info, OAuth tokens (encrypted), and memory files
- We read your email and calendar when you ask — we don't store the content
- Voice messages are transcribed and the audio is deleted
- No AI training on your data (not us, not our providers)
- Your data lives in your own isolated workspace — no one else can see it
/disconnectremoves Google access instantly./deletewipes everything.
Who We Are
Lia is your AI personal assistant. You interact with us via Telegram (@lia_cos_bot). We connect to your email, calendar, and the web to handle tasks on your behalf.
This privacy policy explains what data we collect, how we use it, who we share it with, and how you control it.
Contact us: hello@belowthesurface.studio
What Data We Collect
Information You Give Us
When you start using Lia, we ask for:
- Your name
- Your city (to figure out your timezone)
- Your Telegram user ID (automatically provided by Telegram)
If you connect Google via /connect:
- OAuth tokens that let Lia access your Gmail, Google Calendar, Google Drive, and Google Contacts
- These tokens are encrypted (AES-256-GCM) and stored in our database
If you upgrade to a paid plan:
- Payment information (handled entirely by Stripe — we never see your card details)
- Stripe gives us a customer ID and subscription ID so we can manage your account
Information Lia Accesses (But Doesn't Store)
When you connect Google and ask Lia to do something, she reads:
- Gmail: Your emails (subject, sender, body) — read on-demand, never cached or stored
- Google Calendar: Your events (title, time, attendees, location) — read when needed, not saved
- Google Drive: Files you share or ask about — accessed temporarily, not stored
- Google Contacts: Your contacts list — read to help with emails and meetings, not saved
Critical: Lia reads your email and calendar when you ask her to. She does not store the content. She processes it in-memory during the conversation and then it's gone.
Information Lia Stores
| What | Where | How Long | Can You Delete It? |
|---|---|---|---|
| Your profile (name, city, timezone) | Our database (Supabase) | Until you run /delete |
Yes — /delete |
| OAuth tokens (encrypted) | Our database | Until you /disconnect or /delete |
Yes — /disconnect or /delete |
| Payment info (Stripe IDs) | Our database | Until you /delete |
Yes — /delete |
| Memory files (daily notes, MEMORY.md) | Our server (your workspace) | Free: 7 days. Pro/Max: Persistent until /delete |
Yes — /delete |
| Conversation context | In-memory during session | While you're chatting, then cleared | Auto-cleared |
| Daily message count | Our database | Rolling 24 hours | Auto-resets daily |
Information Lia Does NOT Store
- Raw email content (we read it when you ask, then forget it)
- Calendar event bodies or details
- Voice audio files (we transcribe them with OpenAI Whisper, then delete the audio immediately)
- Full conversation transcripts (context is session-scoped and temporary)
- Anything on third-party servers beyond what the AI providers need to process your requests
How We Use Your Data
We use your data for one reason: to provide the service you signed up for.
Specifically:
- Your name and timezone help Lia greet you and schedule things correctly
- OAuth tokens let Lia access your Gmail, Calendar, Drive, and Contacts when you ask
- Memory files help Lia remember your preferences, contacts, and patterns so she gets better over time
- Payment info (via Stripe) lets us manage your subscription
- Message counts enforce usage limits (50/day Free, 200/day Pro, unlimited Max)
We do not:
- Sell your data
- Share it with advertisers
- Use it to train AI models
- Show it to other Lia users (your workspace is isolated)
Data Isolation
Each user gets their own workspace on our server. Your data is completely isolated:
- No other user can see your memory files, OAuth tokens, or conversation history
- Database queries are scoped by your user ID — no cross-user access
- Your workspace directory is separate from everyone else's
Think of it like separate apartments in a building. You have your own space. No one else has the key.
Third-Party Services
To provide the service, we use:
| Service | What It Does | What They Access |
|---|---|---|
| Anthropic (Claude) | AI language model for understanding your requests and responding | Your messages to Lia, context from your memory files |
| Google (Gemini) | AI language model (alternative/fallback) | Your messages to Lia, context from your memory files |
| OpenAI (GPT-4, Whisper) | AI model for specific tasks + voice transcription | Your messages, voice messages (audio deleted after transcription) |
| ElevenLabs | Text-to-speech for voice responses | Text of Lia's responses (when you use voice mode) |
| Google APIs | Gmail, Calendar, Drive, Contacts access | Your email, calendar, files, contacts (read-only, never stored by us) |
| Stripe | Payment processing | Your payment info (we never see card details) |
| Supabase | Database hosting | Your profile, OAuth tokens (encrypted), payment IDs, message counts |
| Railway | Server hosting | Your workspace files (memory, logs) |
AI Training
We do not train AI models on your data.
Our AI providers (Anthropic, Google, OpenAI) process your requests to generate responses, but:
- Anthropic: Does not train on API data
- Google: Does not train on API data
- OpenAI: Does not train on API data (we use their business tier)
Your conversations with Lia stay between you and Lia. They don't become training data for future AI models.
Your Controls
You have full control over your data:
/settings— View your account info, subscription, and usage/disconnect— Remove Google access instantly (OAuth tokens deleted, Lia can no longer read your email/calendar)/delete— Delete your entire account (profile, OAuth tokens, memory files, payment records, everything)/export— Download a copy of your memory files
Note: /delete is instant and irreversible. Once you delete, we cannot recover your data.
Data Retention
- Free tier: Memory files are kept for 7 days, then automatically deleted
- Pro/Max tier: Memory files persist until you run
/delete - OAuth tokens: Stored until you
/disconnector/delete - Payment info: Stripe IDs stored until you
/delete(Stripe keeps their own records per their policies)
Security
We take security seriously:
- OAuth tokens are encrypted with AES-256-GCM before storage
- Database access is restricted and logged
- API keys are stored in environment variables, not code
- Your workspace is isolated from other users
- We use HTTPS for all connections
If you notice suspicious activity, message us immediately at hello@belowthesurface.studio.
Children's Privacy
Lia is not intended for children under 13. We do not knowingly collect data from users under 13. If we discover that we have, we'll delete it immediately.
Changes to This Policy
If we make significant changes to this privacy policy, we'll notify you via Telegram before the changes take effect. Minor updates (clarifications, typo fixes) won't trigger a notification.
Contact
Questions about privacy? Email us: hello@belowthesurface.studio