Your private AI assistant that never watches back
Panda AI is a privacy-first AI assistant that ensures your conversations remain completely private and secure. Built with end-to-end encryption, all your data is encrypted locally and never stored in the cloud in readable form, and verifiably secure with TEE technology.
- End-to-End Encryption: Every conversation is encrypted with your personal password
- TEE-Powered Backend: All AI processing runs in Trusted Execution Environments for verifiable security
- Cryptographic Attestation: Every LLM communication can be verified through attestation proofs
- Local-First Storage: Data stored locally on your device with optional encrypted server sync
- Vault-Based Security: Isolated cryptographic operations in sandboxed iframe
- Untraceable Conversations: No tracking, no training on your data
- Private AI Chat: Secure conversations with AI that can't be traced back to you
- File Upload & Encryption: Upload and encrypt files with automatic processing
- Multi-Language Support: Available in English, Spanish, Japanese, Korean, and Chinese
- Customizable Prompts: Personalize AI responses with custom instructions
- Real-time Messaging: Seamless chat experience with streaming responses
- Password-Protected: Create encrypted passwords for data protection
- Inactivity Locking: Automatic lock after configurable idle time
- Secure Authentication: Multiple auth methods via Privy (email, Google, GitHub, wallet)
- Data Portability: Export and delete your data anytime
- Sandboxed iframe for secure cryptographic operations
- PBKDF2-SHA-256 key derivation with 310,000 iterations
- AES-256-GCM encryption for files
- AES-256-CBC encryption for text data
- Zero-knowledge password validation
- Trusted Execution Environment: All AI model inference runs in hardware-protected enclaves
- Attestation Proofs: Every LLM response includes cryptographic proof of execution integrity
- Verifiable Security: Users can independently verify that their data was processed securely
- Hardware-Level Protection: TEE ensures even system administrators cannot access conversation data
┌─────────────────┐ ┌────────────────┐ ┌─────────────────┐
│ Next.js App │ │ Vault Service │ │ Panda API │
│ (Frontend) │◄──►│ (Encryption) │◄──►│ (Backend) │
└─────────────────┘ └────────────────┘ └─────────────────┘
│ │
▼ ▼
┌─────────────────┐ ┌─────────────────┐
│ Sandboxed │ │ TEE-Protected │
│ Cryptography │ │ LLM Processing │
└─────────────────┘ └─────────────────┘
│
▼
┌─────────────────┐
│ Attestation │
│ Proofs │
└─────────────────┘
panda-web/
├── src/
│ ├── app/ # Next.js app router
│ │ ├── (chat)/ # Chat-related pages
│ │ ├── login/ # Authentication pages
│ │ └── onboarding/ # First-time user flow
│ ├── components/ # React components
│ │ ├── chat/ # Chat interface
│ │ ├── login/ # Authentication forms
│ │ ├── modal/ # Modal dialogs
│ │ ├── onboarding/ # Onboarding steps
│ │ └── ui/ # Reusable UI components
│ ├── hooks/ # Custom React hooks
│ ├── providers/ # Context providers
│ ├── sdk/ # Core SDK implementation
│ │ ├── auth/ # Authentication management
│ │ ├── client/ # API clients
│ │ ├── storage/ # Storage backends
│ │ └── vault/ # Vault integration
│ ├── services/ # External services
│ ├── types/ # TypeScript definitions
│ └── utils/ # Utility functions
├── vault/ # Cryptographic vault service
│ ├── api/ # Vault API endpoints
│ ├── crypto.ts # Encryption implementation
│ ├── password.ts # Password management
│ └── vault.ts # Main vault service
├── public/ # Static assets
└── styles/ # Global styles