Privacy is a boundary system, not a settings page.

AVRAI separates local state, encrypted coordination, and federated improvement into different operating zones. The privacy claim depends on what can stay local, what is allowed to move, and which controls must resolve before any action.

Boundary map

Three zones. Three different permissions.

AVRAI becomes easier to understand when privacy is framed as an operating map rather than a generic policy statement.

On device

Local state and local inference

Identity, preferences, memory, and recommendation state stay closest to the user.
Ranking, adaptation, and correction loops are designed to run locally first.

Encrypted transfer

Movement only for active coordination

Shared planning, reservations, and AI2AI coordination use explicit transport pathways.
Data movement is policy-checked, encrypted, and scoped to a live task.

Federated cloud

A narrow role for sync, delivery, and aggregation

The cloud distributes models, supports encrypted sync, and aggregates privacy-safe updates.
The goal is system improvement without building a raw-history warehouse.

Default localExplicit consentEncrypted transferFail closed

Control gates

The points where the privacy claim is enforced.

Consent scope

Learning, sharing, and cross-context use should all be separately bounded by consent.

Policy resolution

Unknown or incompatible states fail closed before action, sync, or model promotion.

Operator access

Operator surfaces are for workflow and telemetry, not personal dossiers or message scraping.

Revocation and cleanup

Deletion, export, and revocation need to remove or invalidate affected local learning state.

Next layer

See the model stack behind the boundary.

Privacy defines the perimeter. The reality model defines how ranking, planning, and adaptation work inside it.

Reality model

Operating surface

See where those boundaries matter in product workflows.

Discovery, planning, reservations, and operator tools all sit on top of the same privacy runtime.

Platform