ORVIA is a free, private platform for temporary rooms — voice, video, chat, watch-together, and file sharing. No sign-up required; just create a room, share the link, and start. When everyone leaves, the room and everything in it is permanently deleted.

Do I need to create an account to use ORVIA?

No. ORVIA requires no sign-up, no email, and no password. Pick a display name, create or join a room code, and you are in instantly.

Are messages on ORVIA encrypted?

Yes. Chat messages and files are end-to-end encrypted on your device (XChaCha20-Poly1305 with X25519 key exchange) before they are sent, so the server only relays data it cannot read. Voice and video calls are encrypted in transit and are never recorded or stored.

If messages are encrypted, how does the AI chat summary work?

The AI summary is optional and only runs when you choose to generate it. At that point your device sends the conversation it already holds to our AI provider (Google Gemini) to produce the summary. Nothing is summarized automatically or in the background; if you never use it, your messages never leave the room in readable form.

Do messages disappear on ORVIA?

Yes. ORVIA is fully ephemeral. When the last person leaves a room, all messages, files, and media are permanently deleted. There are no backups and no way to recover anything.

Is ORVIA free to use?

Yes, ORVIA is completely free — no ads, no subscriptions, and no selling of your data. Just create a room and start.

Home

Privacy Policy

Last updated: 8 May 2026

The short version

Orvia is built around a simple promise: your conversations don't outlive them. Rooms, messages, files, and calls exist only while you're in them. The moment everyone leaves, it's gone — there's no database to dig through, no backup, nothing left behind.

This page explains, in plain language, what data we touch and how we handle it.

What we collect

Almost nothing. Orvia has no user accounts, no email signup, no profile, and no permanent storage of your activity.

Messages and files — Routed in real time to other people in your room, then discarded. Never written to a database.

The display name you pick — Used only to identify you to other people in the same room while you're connected.

Anonymous usage analytics — We use Google Analytics to understand things like which features get used and where the app gets slow. No personal information is collected or shared.

Optional third-party features — If you use translation, GIF search, or the AI chat summary, the relevant text, query, or conversation is sent to that provider so they can return a result. These are opt-in, and we don't store any of it on our side.

How information is used

To deliver the experience — Sending messages, syncing video, routing calls, broadcasting presence — the live functionality of a chat room.

To improve the product — Anonymous, aggregate usage signals help us prioritize features and fix performance issues.

Never sold, never shared — We don't sell, trade, or rent any user data. There's no advertising network plugged into Orvia.

Real-time and ephemeral

Everything in Orvia is built to be temporary by design.

No database — We don't run one. There is no store of your messages or rooms to recover, search, or hand over.

Rooms vanish when empty — Once the last participant leaves, the room and all its session state are immediately discarded.

Uploads expire automatically — Shared images, videos, and files live in temporary memory for a short window so they can be delivered, then they're purged.

Presence and activity are live-only — Online status, typing indicators, and reactions exist only while you're connected. Nothing about them is logged.

Encryption and security

Orvia is end-to-end encrypted. Your messages are scrambled on your device before they leave it, and only the people in your room can unscramble them.

Keys stay on your device — Your encryption keys live in your browser. They never get uploaded anywhere — not to us, not to anyone else.

We can't read your messages — When E2EE is on, our servers see only encrypted blobs. We have no technical ability to read message content.

All traffic is encrypted in transit — HTTPS and secure WebSocket connections protect everything between your browser and our servers.

Invite links are signed — Shareable join links are cryptographically signed so they can't be modified or forged.

Voice, video, and media

Voice and video calls are routed through Orvia's self-hosted media infrastructure. We don't hand your calls off to a third-party provider.

Calls are not recorded — We don't record audio or video. Your streams exist only during the active call.

Nothing is saved to a database — When the call ends, the related session and media state are discarded. There's nothing on our side to retrieve.

Encrypted in transit — Audio and video are encrypted between your browser and our media servers.

Per-media access controls — When you share a file, you can choose exactly who in the room is allowed to view or download it. Permission checks happen on our servers — not in the browser — so they can't be bypassed.

Camera and mic are opt-in — You decide when to turn them on. Pin and spotlight choices are local to your view and not visible to other participants.

Third-party services

A few features rely on outside services. When you choose to use them, the relevant content gets sent to that provider — and their privacy policy applies, not ours.

Google Analytics — Anonymous usage analytics. No personal information collected.

Translation — If you translate a message, the message text is sent to a translation provider to get the result back.

AI chat summaries (Google Gemini) — Optional. Only when you tap “Generate Report”, the conversation is sent to Google Gemini to produce a summary and action items, which are shown back to you. It never runs automatically or in the background, and we don’t store the summary or the messages.

GIF search — Your GIF search queries are sent to a GIF provider so they can return matching results.

Speech-to-text — Powered by your browser's built-in speech API. Some browsers may forward audio to their own services for transcription. We don't record or store audio on our side.

Watch Together (YouTube and Vimeo) — Videos load directly in your browser from YouTube or Vimeo when you start a watch session. Their privacy policies apply to that content.

Useful links: Google · Vimeo

Your choices and controls

Mic and camera — Always opt-in. Manage permission from your browser settings any time.

Skip optional features — Don't use translation or GIF search if you'd rather not have that data go through external providers.

Block analytics — Standard browser tracking protection or ad blockers will block Google Analytics.

Leaving — There's no "delete my data" flow because there's nothing stored. Closing the room is the deletion.

Data retention

None.Orvia doesn't retain message content, files, calls, usernames, or any session data after rooms close. There's no database to export from and nothing to delete.

This is a deliberate design choice — we'd rather not be the kind of service that could hand your messages over even if asked.

Children's privacy

Orvia isn't designed for children under 13 and we don't knowingly collect their information. Please don't share sensitive personal data (government IDs, payment details, medical records) in any room — Orvia is built for casual collaboration, not regulated record-keeping.

Changes to this policy

If this policy changes meaningfully, we'll update the date at the top and post a note in the changelog. Continued use of Orvia after a change means you accept the updated policy.

Contact

Questions, concerns, or anything privacy-related — reach out at stormnova04@gmail.com.