Aidana is designed so that your sensitive documents never leave your control. This page explains exactly what happens to your data at each step.
Step 1 — Your files stay in your browser
When you upload a document (Word, Excel, PDF, CSV, etc.), it is opened and read entirely inside your web browser. The file itself is never uploaded to Aidana's servers. All file processing — extracting the readable text from the document — happens locally on your machine.
Step 2 — Only text content is sent to AI
Aidana extracts plain text from your document. No images, no file metadata, no filenames. This text is sent to an AI language model to generate the report. Nothing else leaves your browser.
Step 3 — AI processing in EU (Microsoft Azure)
In standard operation, text is processed by OpenAI's GPT model hosted on Microsoft Azure in the West Europe region (EU Data Zone). The data is processed under Microsoft's enterprise data protection policies. Aidana's standard server logging is metadata-based and does not include document content or AI prompts.
Step 4 — Your report stays with you
The finished report is delivered back to your browser. You can edit it, export it as DOCX or PDF, and close the tab. Document content and report text are not stored on Aidana's servers in standard operation. Aidana stores account information, subscription status, and usage metadata server-side.
| Data | Where | Who has access |
|---|---|---|
| Your uploaded files | Your browser only | Only you |
| Text content (during generation) | Microsoft Azure, EU | Azure OpenAI (under Microsoft's data policies) |
| Finished report | Your browser / exported file | Only you |
| API keys (Bring Your Own AI) | Encrypted in your browser | Only you |
| Account information | Aidana servers (Germany, IONOS) | Email, name, subscription status — no file content |
Paid users can connect their organization's own API key from any of these providers:
When you use your own API key:
Aidana is built by Frostgate AS, a company registered in Norway.
For enterprise inquiries, security questionnaires, or DPA requests, contact us at [email protected].
Is it safe to use Aidana at work?
Your original files are processed entirely in your browser and are never uploaded. If your organization has an existing AI agreement (e.g., with OpenAI or Microsoft), you can connect that directly. Your organization's own procurement and compliance process will determine what approvals are needed.
Does Aidana store my documents?
Your original files are processed entirely in your browser. Only extracted text is sent to the AI provider for report generation. Document content and report text are not stored on Aidana's servers in standard operation. Aidana stores account metadata, subscription status, and usage information server-side.
Where is the AI processing done?
Free trial reports are processed by Microsoft Azure OpenAI in West Europe (EU Data Zone). Paid users can choose their own AI provider and region.
Can I use Aidana without sending data to the cloud?
Yes. Connect an Ollama instance running on your own hardware. All AI processing happens locally on your machine — no data leaves your network.
Can my employer approve Aidana?
We provide DPA agreements, can respond to security questionnaires, and participate in procurement processes. Contact [email protected] to start an enterprise evaluation.
See the full data flow
Interactive diagrams showing exactly how data moves through Aidana — for both server-processed and Bring Your Own AI setups.
View data flow diagrams →