Skip to content

alaivOS MASTER_KB

Generated: 2026-04-14 | Source: Omega v2.7 canonicals | Public: yes (no secrets)

Condensed public reference synthesizing 17 canonical documents into an agent-loadable cheat sheet. All sensitive data (IPs, keys, tokens, project refs, emails, SSH details) have been stripped. Public URLs, model names, costs, and architectural decisions are retained.

§1 Status

Key metric Value
Launch target May 28, 2026 (World Cup kickoff June 11, 2026)
Days to launch (from 2026-04-14) 44 days
Hard launch blockers 0
Code health 0 analyze errors · 0 warnings · 0 GT violations
Test count ~970+ TAW tests cumulative (all passing)
Sprint count ~125+ across all sessions
Current Omega version v2.7 (April 13, 2026 PM)
Last KB update 2026-04-14 (initial MASTER_KB generation)

Delta audit snapshot (end v2.7): 11/14 critical feature gaps DONE, 5/5 partials DONE, call system 3/3 DONE. Remaining exceptions: iOS DND in-app only (platform limitation), family calendar local-only (Wave 2 deferred), bank-connect keys deferred.

Pipeline health: ghost-01, cx23, cx23-b all green. Models on CDN (7 files + manifest.json). Gemma 4 E4B function calling verified EN/ES/PT. Sports Cache healthy with 31 leagues. Checkup Relay deployed but blocked on Anthropic API key.

§2 Build

Sprint breakdown

Wave Count
Pre-TAW 71
TAW 1-10 10 waves
v2.6 (Call system) 15
v2.7 (Checkup, AQ, Sports, Privacy) 15
Total ~125+

Code metrics

Metric Value
TAW tests cumulative ~970+ (v2.7 added +183)
Feature gates 120+ (× 7 tiers)
ARB keys (EN) ~8,500+
Locales 21
Responsive.* calls 17,766+
AppTier enum values 7 (starter/proTrial/spark/core/pro/elite/eliteTrial)
Modules 14 (lazy-loaded)
OmniOrb modes 5
Laiv skills 17
Observer rules 11 (Rule #11 = AQ)
Planner action types 6
Executor module actions 8

v2.7 sprint deliveries (15 sprints)

Username Blocker (Delta) · Checkup Relay Gemma anonymizer (Epsilon, DEPLOYED) · Checkup Pipeline + AMI thresholds (Alpha, 33 tests) · Checkup UI (Gamma, 21) · Checkup Teaser Hints (Beta-2, 35) · Onboarding Data Audit (Delta) · Sports Cache 31 leagues (Epsilon) · Reinstall Persistence 6 fields→Supabase (Alpha, 15) · Feature Gap Status Audit (Delta) · Encrypt Plaintext Tables AES-256-GCM (Epsilon, 14) · AQ Prism + Dashboard (Gamma, 31) · AQ Proactive Alerts Observer #11 (Beta-2, 32) · AQ Checkup + Travel + Laiv Context (Alpha, 22) · Omega KB Session Brief · Gemini Sports API Research.

Builder roles

Role Scope
Alpha Build Master — architecture, AI, GGUF runtime, AMI, Checkup pipeline, integration passes
Beta-1 / Beta-2 Feature builders — directions, notifications, anti-abuse, chat, events, money, voice, AQ, debugging
Gamma UI/Settings — dock, POI widgets, glass UI, AMI dots, personas, AQ Prism, Checkup UI
Delta Tester + Doc Keeper — audits, builds, tests, BUILD_LOG.md
Epsilon Infrastructure/Server — CX43, pipeline, CDN, Photon, harvesting, Kokoro, sports cache, Checkup Relay, KV
Kappa Web — alaivos.com, landing, billing portal, legal pages, hub
Zeta Account setup / external signups (J-assist)

§3 Architecture

Core identity

  • App: alaivOS (formerly Kairos) — privacy-first Life OS replacing 5-10 apps
  • Company: Citerius Holdings LLC (Wyoming), d/b/a alaivOS
  • Founder: J (Guadalajara, Mexico)
  • Codebase: Flutter/Dart, Riverpod + Freezed, SQLite direct (NO PowerSync)
  • UI: Productivity Glassmorphism (frosted glass, 120 fps, translucent cards)
  • Philosophy: Local Supremacy — "Zero-Data-Harvesting Architecture"

The 14 Modules (scrollable dock)

  1. Insights (home) — ModuleTimelineView, CortexCard, 24 Prism cards, AQ Prism, Ghost banner
  2. Events (Calendar) — single + recurring events (28-day lookahead), ICS import, family calendar (local-only)
  3. Money — accounts, transactions, budgets, spending alerts, bill reminders, CSV/OFX import
  4. Projects — projects + kanban, stale-task detection, deadline alerts
  5. People — contacts, trust/affinity, VIPs, reconnect nudges, contact-map pins, birthday reminders
  6. Maps — 5 views (Explore/Directions/Navigate/My Places/Trip View) + circadian tiles
  7. Streams — split into Chat (E2EE) + Notes (local-first)
  8. Wellbeing — water, steps, sleep, meal log (photo→USDA→AI cascade), workouts, habits, mood, Sick Mode
  9. Sessions — 6 sections (Recipes, Exercise, Learning, Meditation, Reading, Capsules)
  10. Sports — 5 tabs · 4 table styles · 40 ARB keys · 31 leagues
  11. Learning (Reader) — EPUB, highlights, vocabulary spaced repetition
  12. Travel — trip planning, Travel Mode, currency converter, itinerary
  13. Focus — focus timer, DND activation (in-app only), focus modes
  14. Family — dependents, family calendar, family location sharing Plus Vault (dock defaults TAW5) — secure doc storage, locked notes.

Off-dock (v1.0): Marketplace exists but not in dock defaults.

5 OmniOrb Modes (stackable)

Travel · Family · Focus · Sports · Wind Down. Plus background Life Modes (Budget Crisis, Recovery, Caregiver, Pregnancy, Senior, Training, Sick Mode) tracked in ModeStack. OmniOrb = modes, Dock = modules — separate concerns.

AI Stack (Qwen 3.5 tier ladder + Gemma 4 E4B Ghost)

Tier label CDN file Model Download Loaded RAM Min free RAM
on-device-xs laiv-xs.gguf Qwen 3.5 0.8B Q4_K_M 989 MB 2.1 GB 2.5 GB
on-device-s laiv-s.gguf Qwen 3.5 2B Q4_K_M 2.55 GB 4.1 GB 4.5 GB
on-device-m laiv-m.gguf Qwen 3.5 4B Q4_K_M 3.16 GB 5.8 GB 6.2 GB
on-device-l laiv-l.gguf Gemma 4 E2B Q4_K_M 6.67 GB 7.7 GB 8.0 GB (tablets)
on-device-xl laiv-xl.gguf Gemma 4 E4B Q4_K_M 8.95 GB 10 GB 10.5 GB (tablets)
ghost-std laiv-ghost.gguf Gemma 4 E4B Q4_K_M 8.95 GB 10 GB — (server)

On-device = Qwen 3.5 only (all sizes have unified vision, 262K context, 201 languages, Hermes-style tool calling; 4B has native early-fusion multimodal). Ghost server = Gemma 4 E4B (12 tok/s, native function calling EN/ES/PT, native audio input, native vision). Qwen 3.5 9B stays as Ollama fallback. Gemma 4 is server-only for phones today — practically E2B/E4B for tablets/future.

Filenames are tier labels, not model names. When a better model drops, swap the GGUF behind the same filename; app reads manifest.json for SHA + sizes. Cloud Gemini is DEADAiProvider enum = {local, ghost}.

AMI — Adaptive Model Intelligence (LOCKED)

  • Dynamic load/unload — ONE model at a time, NEVER TWO.
  • App backgrounded → model unloaded → zero RAM/battery/heat.
  • Foregrounded → AMI checks freeRamMb → picks best tier → loads during navigation (2-8 s hidden behind splash/home).
  • No always-resident model. "0.8B always loaded" explicitly rejected.
  • Dual prompt templates: Qwen 3.5 ChatML + Gemma 4 turn-based.
  • Thresholds retuned in v2.7 (Alpha Checkup Pipeline sprint) — follow constants in adaptive_model_manager.dart.
  • Real-world cascade (Pixel 7 Pro: 12 GB total, 3.6 GB free): most flagship users run Qwen 0.8B. Ghost is the real AI upgrade path.

Ghost Server (high level)

Hetzner CX43 in Helsinki. Runs: Ollama (Gemma 4 E4B, pinned ~10 GB, thinking-mode OFF for Instant path), ghost-router (internal proxy), sports-cache (port 8300, 31 leagues), checkup-relay (port 8100), nginx (public HTTPS on ghost.alaivos.com), coturn (WebRTC TURN relay). Cost: €17/mo. Secondary servers cx23 (€4) and cx23-b (€4) handle Europe traffic collection and DDG/airport harvesting.

Multi-agent Architecture v1.0 (BUILT)

Agent Role
SkillRouter skill_router.dart — 17 skills, multilingual keywords EN/ES/PT/FR/DE
ObserverAgent observer_agent.dart11 pattern rules (Rule #11 = AQ), READ-ONLY
PlannerAgent 6 action types
ExecutorAgent 8 module actions, confirmation-gated via ActionPlanCard, rollback on partial failure
PersonalitySettings 5 presets (Coach/Friend/Assistant/Mentor/Custom) + 4 sliders (warmth/verbosity/directness/humor)

Brain Distillation stays v1.1. Both text and voice paths call skillRouter.route(). TTS auto-speak post-skill via sovereignTtsServiceProvider.speak(...). Persona injection via prompt_assembler.dart.

The 17 Laiv Skills

log_expense · log_meal (photo→AI / text→USDA→static→AI cascade) · log_sleep · log_workout · add_event · add_task · add_note · call_contact · message_contact · start_focus · plan_trip · create_project · log_water · log_mood · activate_sick_mode · set_reminder · search_places.

5-Layer Traffic Intelligence Engine

ETA = baseline_spline × live_calibration × weather × calendar × event

  • Baseline: Catmull-Rom cubic spline (Gold cities), linear (Standard)
  • Live calibration: TomTom (19 keys distributed)
  • Weather: Open-Meteo
  • Calendar: 20 countries (holidays, puentes, Semana Santa, Buen Fin, Día de Muertos)
  • Event: local event density
  • Factor chips display minutes, not percentages ("Rain expected — adds ~8 min")

Code path: lib/core/location/traffic_intelligence/ — 8 files.

Voice Pipeline (Kokoro-first inverted)

ElevenLabs reference audio (never shipped to users)
    ↓ Bishop extracts StyleTTS 2 style vector
Kokoro 82M .pt (~500 KB) — canonical "Laiv voice" reference
    ↓ generates reference corpus (500-1000 sentences EN/ES/PT)
    ├── Fine-tune Piper VITS → ONNX (on-device)
    └── Voxtral 3B zero-shot embedding → Ghost HD (v1.1+)

Users never heard the EL voice. Kokoro's approximation IS the first voice they hear. Piper trained to match Kokoro — quality degrades gracefully. v1.0 on-device = Piper ONNX en_US-hfc_female-medium via sherpa_onnx (bundled in APK, ~63 MB).

Laiv Checkup v1.0

3-domain overnight analysis (Wellbeing / Planning / Financial). Pipeline: device strip → Gemma 4 E4B anonymizer on CX43 → Anthropic Batch API. Cost: ~$0.012/checkup.

Tier Cadence
Starter None
Spark Every 6 months
Core Every 3 months
Pro Every 2 months
Elite Every 1 month

Trial flow (FREE regardless of tier): Day 0 baseline (planning-only, post-onboarding) → Day 14 mid-trial (all 3) → Day 28 full (all 3). Teaser hints between checkups. Capsule generation from aggregates is v1.1+.

AQ Monitoring v1.0

Prism card + detail sheet + Morning Briefing notice + Observer Rule #11 + local notifications (Unhealthy+) + trend tracking + Travel warnings + Checkup integration + Laiv context injection. Sensitivity setting. All on free Open-Meteo — 290 cities.

Multi-Sport Cache v1.0 (31 leagues)

Sources: ESPN (14 US sports, free) · TheSportsDB (15 LatAm/football/cricket, $3/mo Patreon for commercial ToS) · Jolpica (F1, free) · boxing scraper. Server: ghost-01:8300, 1-hr TTL, stale-on-error. Client: 5 tabs · 4 table styles · 40 ARB keys × 21 locales.

Key Service Mappings

Abstract Real implementation
LocalModelService LocalInferenceService + LlamaRuntime (llama_cpp_dart FFI)
AdaptiveModelManager / AMI Dynamic tier by freeRamMb, ONE model at a time
TTS SovereignTtsService (sherpa_onnx Piper ONNX), fallback CortexVoiceService
Voice Nav NavVoiceService + InstructionEnricher (OSRM steps → 21 locales)
Navigation NavigationService (idle→navigating→rerouting→arrived)
E2EE libsignal_protocol_dart (real, not stubs)
TrialGuard Device fingerprint check before signup
ModuleLoader Lazy init on first dock tap
GpsManager 5 modes (idle/significantChange/mapExplore/navigating/paused)
CheckupService On-device orchestrator for cadence + bundling
CheckupRelay CX43 port 8100, Gemma anonymizer + Batch API
SportsCache ghost-01 port 8300, 31 leagues

§4 J-Tasks

Critical — launch blockers (unblocked, do now)

# Task Owner Status Time
1 Build fresh APK (FK + username fix) + device-test J Pending 30 min
2 Reboot ghost-01 (apply kernel 6.8.0-107) J Pending 30 s
3 Firebase project → google-services.json + SA key J Pending 15 min
4 Twilio signup (for Day 14 phone verify) J Pending 20 min
5 Anthropic API key (as Citerius Holdings LLC, $20 credits) J Pending 15 min
6 TheSportsDB Patreon ($3/mo commercial ToS) J Pending 5 min
7 Warrant canary re-sign (PGP) — DUE APR 19 J Pending 15 min
8 Supabase migration (6 ALTER TABLEs — reinstall sprint) J Pending 2 min
9 Cloudflare API token J In progress 10 min
10 Deploy hub.alaivos.com (3 files + CNAME + Supabase creds) J Pending 10 min
11 DMCA designated agent registration (Registered Agents Inc, $6) J Pending 10 min
12 Listen to Kokoro voice samples + pick canonical J Pending 15 min

High — blocked on external

# Task Blocked on ETA
13 Apple Developer approval Apple review (submitted Mar 24) Day 20
14 Google Play org approval Google review (submitted Mar 25) Day 19
15 Mac rental + Xcode build Apple approval After #13
16 Stripe + RevenueCat + store configs Both stores approved After #13+#14
17 Bishop provisioning (mini PC) J purchase/setup Blocks voice pipeline

Pre-Revenue URGENT

# Task Why
18 Cross-border tax counsel (MX founder + WY LLC + global rev) Before first dollar received
19 Attorney review (Privacy + Terms + trial conditions) Before significant user volume

Builder/Epsilon In-flight

  • Epsilon: KV namespace + Worker · Deploy Kokoro Ghost TTS once J picks voice · Deploy Checkup Relay batch path once API key is in
  • Kappa: 7 legal pages · privacy.html (phone + third-party AI) · terms.html (trial conditions) · phone-hash row in law enforcement page · World Cup landing (before June 1) · hub.alaivos.com deploy
  • Delta: focused reaudit after APK confirmed

§5 Pricing — LOCKED

LOCKED — do not modify without J approval. Read values from lib/config/pricing.dart, never hardcode.

Tier matrix (USD)

Tier Monthly Annual (pay 10, get 12) Annual/mo display Tagline
Starter Free Your Starting Point
Spark $3.99 $39.90/yr $3.33 The Foundation
Core $7.99 $79.90/yr $6.65 The Sweet Spot
Pro $14.99 $149.90/yr $12.49 Power User
Elite $23.99 $239.88/yr $19.99 The Full Experience

Annual model: Pay 10, get 12. No other annual discount exists. Core annual/mo display: $6.65 (truncated). Spark annual/mo: $3.33 (do not change).

What each tier promises

  • Starter (Free): Essential OS — manual planner, all 14 modules, no AI, text-only. Interactive map + voice nav + motorcycle time FREE.
  • Spark ($3.99): Laiv starts thinking — on-device AI (Qwen 0.8B + 2B by RAM), 15 DDG/day, Laiv Voice Standard, historic traffic, family location, Checkup 6mo.
  • Core ($7.99): Laiv connects dots — Qwen 4B, 30 DDG/day, cross-module Morning Pulse, live traffic, smart departure alerts, Checkup 3mo.
  • Pro ($14.99): Laiv works overnight — full local + Night Shift, 50 DDG/day, voice commands, traffic coloring, navigate deep link, multi-stop, Checkup 2mo.
  • Elite ($23.99): Laiv never sleeps — everything in Pro + adaptive scheduling, AI health insights, deep correlations, unlimited DDG, Ghost base included (50D/20I), 1 bank connection, Checkup 1mo.

Ghost Protocol — credit model (credits are the ONLY gate)

Per-skill pricing is DEAD. Credits are the only gate — ALL capabilities available at every Ghost tier.

Product Price Credits Notes
Ghost $3.99/mo 50D + 20I Entry
Ghost Plus $7.99/mo 80D + 80I
Ghost Max $14.99/mo 100D + 300I
Ghost Deferred $2.59/mo 70D + 0I 35% off
Ghost Plus Deferred $5.19/mo 160D + 0I 35% off
Ghost Max Deferred $9.74/mo 400D + 0I 35% off
ghost_credits_small $1.99 15 I (consumable)
ghost_credits_medium $4.99 50 I
ghost_credits_large $9.99 120 I

Elite includes Ghost base (50D / 20I). Ghost Def entry in LatAm: ~MX$32/mo (~$1.81 USD).

Add-ons

  • Banking Connection: $0.99/mo per bank (Spark+). Providers by region: US→Plaid, LatAm→Belvo, EU/UK→TrueLayer. Billed via Stripe web at alaivos.com/billing (NOT IAP). Elite includes 1 bank.
  • Custom Voice: $7.99 one-time per voice (Spark+ 3 max · Pro/Elite 5 max).

Group Plans

50% off per member. Cap 6 members. Open to anyone — friends, roommates, coworkers, sports crews, study groups. No address verification. Regional min tier: Core+ (US/UK/EU), Spark+ (emerging markets).

Owner's plan Owner Each member Family-of-4 total Per person
Spark $3.99 $1.99 $9.96 $2.49
Core $7.99 $3.99 $19.96 $4.99
Pro $14.99 $7.49 $37.46 $9.37
Elite $23.99 $11.99 $59.96 $14.99

Group types: Family · Sports · Study · Faith · Work · Training · Wellness · Events · Friends.

Regional (PPP via Stripe)

Tier US/EU/UK LatAm
Spark $3.99 $1.99–2.99
Core $7.99 $4.99–5.99
Pro $14.99 $8.99–10.99
Elite $23.99 $14.99–17.99

Ghost tiers ~30% below USD in LatAm.

Billing Infrastructure

  • Subscriptions: RevenueCat (Apple + Google + Stripe web)
  • Ghost Protocol: RevenueCat (subs + consumable credit packs)
  • Banking add-on: web billing via Stripe (NOT IAP)
  • Credit packs: IAP (accept 30% store cut for conversion)
  • Downgrade: always deferred to end of billing period

Affiliate program

50% recurring first 12 months, then 20% ongoing. Cookie window 90 days. Amazon integration with affiliate tag alaivos-20.

§6 Trial

Structure (LOCKED)

21 days guaranteed (14 Pro + 7 Elite). Up to 28 days with referrals. 100% on-device during trial — no cloud costs. Mandatory progressive interview (no skip/cancel/dismiss). Day 14: mandatory phone verification (Twilio SMS) to unlock Elite; skip = Starter immediately. Phone hash stored (never raw). Device ID fingerprinted silently at signup. Cost to Citerius: ~$0.03/user.

Feature proTrial (Day 0-14) eliteTrial (Day 14-21)
On-device AI All models (like Pro) All models (like Elite)
All Pro features
Adaptive scheduling
AI health insights
Deep cross-module correlations
Ghost Protocol ❌ (on-device only) ❌ (on-device only)
Paid add-ons (banking, Custom Voice)
Cloud AI ❌ (Cloud Gemini DEAD)

Checkup Schedule (trial — FREE regardless)

Day Checkup Scope
Day 0 (post-onboarding) Baseline Planning-only
Day 14 (mid-trial) Mid-trial All 3 domains
Day 28 (trial end) Full All 3 domains

Progressive Interview (45 questions × 11 traits)

Mandatory. No skip, no cancel, no dismiss. Delivered across Days 1-14. Traits assessed across dimensions — users scored, not slotted rigidly. Sports is a gradient trait, not a standalone cluster. Questions drive: persona selection (5 presets), Life Dimensions profiling, Laiv personality, mode suggestions, onboarding data used in prompts.

Post-trial Cadence

Tier Checkup cadence
Starter None
Spark 6 months
Core 3 months
Pro 2 months
Elite 1 month

Onboarding Data (persisted to Supabase for reinstall recovery)

6 onboarding fields persisted to Supabase user_profiles as of v2.7 (for reinstall recovery across app wipes).

§7 Voice

Model Stack

Tier Engine Runs on Availability
Text Only Starter
Laiv Voice Standard Piper ONNX en_US-hfc_female-medium Device (bundled in APK, ~63 MB) Spark+
Laiv Voice HD Kokoro 82M Ghost server Ghost subscribers (pending deploy)
Custom Voice Standard Piper ONNX (per-voice ~60 MB download) Device Spark+ ($7.99 one-time)
Custom Voice HD Voxtral 3B zero-shot Ghost server Ghost subscribers (v1.1+)

Custom Voice slots: Spark/Core 3 max. Pro/Elite 5 max.

Pipeline Status

  • v1.0 on-device: Piper ONNX only. Bundled Piper voice is the shipping default.
  • Ghost TTS: Kokoro eval DONE — awaiting J's canonical voice pick, then Epsilon deploys.
  • Voxtral Ghost HD: v1.1+ (zero-shot embedding from Kokoro reference).
  • ElevenLabs and WaveNet: DEAD in production. No third-party TTS shipped.

Kokoro-First Training Plan (Bishop)

Bishop = AMD Ryzen AI 9 HX 370 mini PC with 64 GB DDR5 + Radeon 890M iGPU + XDNA 2 NPU (50 TOPS). No discrete GPU / no CUDA. Training on CPU — sufficient for one-time jobs.

Piper fine-tune from checkpoint: 80-150 samples (5-15 min audio), ~1-2 hr CPU on Bishop. Target: v1.0 if Bishop ready, else v1.0.1.

Rationale for Kokoro-first inversion: Users never heard the EL voice — Kokoro's approximation IS the first voice they hear. Piper trained to match Kokoro (not EL) — quality degrades gracefully. Voxtral clones Kokoro output for Ghost HD — same person, frontier quality.

Voice Navigation

NavVoiceService + InstructionEnricher (OSRM steps → natural language × 21 locales). Voice navigation + motorcycle time = FREE for ALL tiers (locked decision).

§8 Website

Page inventory

Deployment: Cloudflare Pages (3 projects, free tier). Owner: Kappa.

Page URL path Deploy status Notes
Pre-launch landing index-prelaunch.html → alaivos.com Live Waitlist email capture (Google Apps Script)
Post-launch landing index.html → alaivos.com Staged for D-Day Store badges + pricing + screenshots
About /about Ready, deploy pending Mission, beliefs, differentiators
Contact /contact Ready, deploy pending 5 email categories + form
Privacy Policy /privacy V2.7 UPDATES REQUIRED Add phone disclosure + third-party AI line + 6 onboarding fields + encrypted-at-rest tables
Terms of Service /terms V2.7 UPDATES REQUIRED Trial conditions (14 Pro + 7 Elite, mandatory interview, Day 14 phone verify)
Health Data Privacy /health Ready MHMD-compliant
Billing & Refund Terms /billing Ready Credit model + flat $0.99 bank add-on + 50% Group Plan
Law Enforcement Guidelines /lawenforcement V2.7 UPDATE REQUIRED Add phone-hash row (confirm-match only)
Warrant Canary /canary RE-SIGN DUE APR 19 PGP-signed, 30-day cadence
PGP Public Key /pgp Ready Downloadable .asc file
World Cup landing /worldcup BEFORE JUNE 1 Not started
hub.alaivos.com hub.alaivos.com Pending 10-min J deploy Tagline: "Family dashboard for your tablet. Free with any Group Plan."
my.alaivos.com my.alaivos.com Pending Tagline: "Your full alaivOS on any screen. Free with any paid plan."
docs.alaivos.com docs.alaivos.com Behind CF Access Internal docs (ALAIVOS_KB namespace)

Launch-day swap

Replace index-prelaunch.html (waitlist) with index.html (App Store / Google Play badges + pricing + screenshots).

Kappa TODOs (K1-K9)

K1 privacy.html update · K2 terms.html trial conditions · K3 law enforcement phone-hash row · K4 /worldcup landing · K5 deploy 7 legal pages · K6 launch-day swap · K7 hub.alaivos.com · K8 remove outdated "Ultra 9B on-device" copy + add "voice nav FREE all tiers" · K9 canary re-sign.

§9 Brand

Typography

Font: Inter (self-hosted variable, /fonts/inter.css + Inter-Variable.woff2). Never Google Fonts CDN — privacy violation. Brand casing: always alaivOS (never ALAIVOS, AlaivOS, Alaivos, alaivos).

Color tokens (website + app accents)

Name Hex Usage
White/BG #F9FAFB Page background
Charcoal #1A1A1A Text, dark elements
Purple #E040FB Primary accent, Events
Blue #2979FF Secondary accent, Money
Green #00C853 Positive, Wellbeing
Orange #FF6D00 Warning, Streams
Yellow #FFD600 Highlight, Focus
Red #FF1744 Ghost Protocol, alerts
Indigo #4A148C Rainbow spectrum

UI Mandate — Productivity Glassmorphism

Every card, sheet, dialog, overlay, panel MUST use: ClipRRectBackdropFilter(blur: 24)Container(gradient: LinearGradient(white 0.14→0.05), border: white 0.2).

120fps target. Translucent cards. Circadian-adaptive backgrounds.

Coding style conventions

  • Colors: withValues(alpha: X)NEVER withOpacity.
  • Strings: ALL user-visible text through l10n (ARB × 21 locales) — NEVER hardcode English.
  • Font sizes: Responsive.sp().
  • debugPrint must be wrapped in if (kDebugMode) { debugPrint(...); }.
  • OSRM coords: longitude,latitude order (not lat,lng).
  • Nominatim: User-Agent: alaivOS/1.0.

Voice & Tone

Privacy narrative (always say): - "Zero-Data-Harvesting Architecture" - "AI on YOUR phone, not someone else's server" - "Local Supremacy" - "on-device first" - "Signal Protocol E2EE on every tier, including free"

Public web copy variants: - "Zero-Data-Harvesting" (public short form) - "It's encryption by design" - "Your data belongs to you. Period."

Core marketing messages: - "Stop Managing Apps. Start Orchestrating Life." - "Your life isn't lived in silos, so why is your data?" - "5 apps at $62/month, or alaivOS starting at $3.99."

Forbidden terms

Never say Why / use instead
"offline AI" Wrong — we have Ghost cloud path. Use "Zero-Data-Harvesting Architecture"
"encrypted-at-rest" (as headline) Table stakes. Use stronger framing
"secure" (vague, alone) Needs proof
"no tracking" (alone) Needs proof/mechanism
"Ultra 9B on-device" 9B is fallback-only on Ollama. Ghost runs Gemma 4 E4B
"Citerius Holdings LLC" in copyright line Use © 2026 alaivOS. All rights reserved. — Citerius is body text only

Anti-positioning

NOT a work/enterprise tool · NOT a strict GTD app · NOT a banking app (no investment advice) · NOT a medical device (no diagnoses) · NOT "offline-only" (Ghost is opt-in) · NOT surveillance-based.

§10 Accounts

Account Owner Status Notes
Apple Developer J Blocked (submitted Mar 24) ~Day 20 approval
Google Play (org) J Blocked (submitted Mar 25) ~Day 19 approval
Stripe + RevenueCat J Blocked on both stores One coordinated config session after #13+#14
Mac rental + Xcode + TestFlight J Blocked on Apple After Apple approves
Bishop provisioning (mini PC) J Pending purchase/setup Blocks voice pipeline v1.0 training
DMCA designated agent J Pending registration Registered Agents Inc ($6 + 10 min)
Anthropic API J Pending ($20 credits) Registered as org "Citerius Holdings LLC"; used for Checkup Batch API only
Twilio J Pending signup Required for Day 14 phone verify
Firebase J Pending google-services.json + service account key for FCM push
Cloudflare API token J In progress Required for KV shared brain + Worker deploys
TheSportsDB Patreon J Pending ($3/mo) Required for commercial ToS compliance (sports cache)
Warrant canary PGP key J Drafted, re-sign due Apr 19 Private key NEVER leaves J's machine
Supabase Epsilon Live (EU-central-1 project) Free tier; 6 ALTER TABLE migrations pending
Cloudflare R2 (CDN) Epsilon Live Bucket alaivos-models, cdn.alaivos.com
Cloudflare Pages Kappa Live 3 projects: alaivos-com, hub-alaivos, my-alaivos
Cloudflare Workers Epsilon Live photon.alaivos.com + DDG worker
Cloudflare KV (shared brain) Epsilon Sprint ready, pending J token Keys: master-kb, current-sprint, sprint-results, sprint-log, delta-findings, arch-decisions
Hetzner (3 servers) Epsilon Live ghost-01 CX43 + cx23 + cx23-b
Mercury (business bank) J Approved Citerius Holdings LLC
Legal entity (Citerius Holdings LLC) J Formed (Wyoming) EIN received, D-U-N-S received, USPTO TM filed

Additional J coordination tasks

  • Transfer dev accounts (Apple/Google) personal → LLC post-stability
  • Madrid Protocol trademark filing (post-launch, once USPTO serial confirmed)

§11 Blockers

Critical path (ordered)

[J do-now]         → APK test + API keys + Supabase migration + canary + Firebase + Twilio
[Kappa]            → Deploy 7 legal pages + privacy.html + terms.html patches
[Epsilon]          → Deploy KV shared brain + Checkup Relay (needs Anthropic key) + nginx fix
[External blocked] → Apple Developer (Day 20) · Google Play (Day 19)
[J coordinated]    → Mac + Xcode + Stripe + RevenueCat + TestFlight + store submissions
[Launch]           → May 28, 2026
[Post-launch]      → Kappa website swap + World Cup landing (before June 1)

Phase timeline (44 days)

Phase Window Owners Gate
P0 — Unblock Apr 13-19 J API keys + canary + Supabase + Firebase + Twilio
P1 — Sprint execution Apr 13-25 Alpha/Beta/Gamma/Epsilon Checkup live + Wave 1 confirmed + KV deployed
P2 — Legal + Kappa Apr 18-28 Kappa + J 7 legal pages live, privacy/terms patched, attorney review
P3 — Store approvals Apr 13-May 3 External Apple + Google org approvals
P4 — Build + submit May 3-15 J + Epsilon Mac + Xcode + Stripe + RevenueCat + TestFlight + submits
P5 — Beta + polish May 15-26 Beta testers + Delta 50-100 testers, crash triage, final Delta reaudit
P6 — World Cup landing May 20-31 Kappa Landing live before June 1
P7 — LAUNCH May 28 All Swap website · go-live · Product Hunt · Reddit · Discord
P8 — Post-launch May 28-Jun 11 All Crash triage, WC promo, revenue starts

Pre-Revenue URGENT

  1. Cross-border tax counsel (MX founder + WY LLC + global revenue — before first dollar received)
  2. Attorney review (Privacy + Terms + trial conditions — before significant user volume)

Remaining launch-window gaps (non-blocking, deferred)

Item Disposition
Chat E2EE / FCM / user discovery Wave 1 Beta-1 + Alpha — confirm status
Recurring events + ICS import Wave 1 Beta-2 — confirm status
Money CSV/OFX import Wave 1 Beta-2 — confirm status
Currency converter / DND / quick fixes (11) Wave 1 Gamma — confirm status
Family calendar sharing Wave 2 — defer to v1.1 if unexecuted
Notes cloud sync Wave 2 — defer to v1.1 if unexecuted
Bank connection (Plaid/Belvo) Deferred post-launch (keys blocked)
iOS DND Platform limitation — in-app only

Monthly infra cost baseline

Service Monthly
ghost-01 CX43 (Helsinki) €17
cx23 (Europe traffic) €4
cx23-b (Expansion + DDG) €4
Supabase / Cloudflare Pages / R2 / Workers / KV Free tier
TheSportsDB Patreon $3
Anthropic API (Checkup) Variable, ~$20 initial credits
Total ~€28/mo + $3/mo

Anthropic Checkup variable cost: ~$0.012/checkup.

Launch-day checklist

  • Final release APK + IPA signed and on stores
  • Supabase prod config + RLS verified
  • Stripe + RevenueCat live mode toggled
  • googlePlacesKillSwitch flag ready (auto-trip June 5, 2026)
  • alaivos.com swapped: waitlist removed, badges + pricing + screenshots up
  • Canary PGP-signed and current
  • Legal pages + DMCA agent registered
  • Ghost-01 / cx23 / cx23-b green; pipeline snapshots flowing
  • Checkup Relay healthy, Anthropic credits funded
  • Sports cache healthy, 31 leagues responding
  • Product Hunt / Reddit / Discord ready
  • J support rotation + crash alert pager active

§12 Sync Log

Append-only. Newest entries at the bottom.

  • 2026-04-14 — Initial MASTER_KB created by Epsilon from Omega v2.7 canonicals (17 files). Pushed to KV key master-kb.

APPENDIX A — Locked Decisions (non-negotiable)

  1. Ghost Protocol: Credits are the ONLY gate. ALL capabilities at every Ghost tier.
  2. On-device models: Qwen 3.5 only (NOT 2.5). 0.8B / 2B / 4B practical; E2B/E4B tablets/future.
  3. Ghost server model: Gemma 4 E4B (12 tok/s, native function calling EN/ES/PT).
  4. Gemma 4 is server-only on phones today.
  5. AMI: ONE model at a time, NEVER TWO. No always-resident model.
  6. Smart Flutter Responses bridge the model-load gap (10 handlers, tier-gated).
  7. Notification tap = instant Laiv data-driven response, no OmniOrb needed.
  8. Cloud Gemini: DEAD. AiProvider = {local, ghost}.
  9. Trial: 14 Pro + 7 Elite = 21 days. Mandatory interview. Day 14 phone verify.
  10. Voice v1.0 on-device: Piper ONNX only. Ghost: Kokoro 82M (pending deploy).
  11. E2EE: Universal. Every tier including Starter. Signal Protocol.
  12. Map: Interactive map + voice nav + motorcycle time = FREE for ALL tiers.
  13. Navigation: Scrollable 14-module dock + OmniOrb 5 modes (separate concerns).
  14. Lazy loading: Modules init on first dock tap.
  15. Privacy framing: "Zero-Data-Harvesting Architecture" — never "offline AI."
  16. Health data: NEVER synced to cloud, NEVER in Ghost prompts.
  17. Group Plans: 50% off / cap 6 / open to anyone.
  18. Anti-abuse: 7 defense layers. Device fingerprint at signup. Phone verify Day 14.
  19. POI/search stack: ZERO paid API deps. Google Places = kill-switch luxury layer (expires June 5, 2026).
  20. Traffic Intelligence: 5-layer composite. Factor chips in minutes, not percentages.
  21. Multi-agent architecture v1.0: BUILT. Brain Distillation v1.1.
  22. CX43 stays. Gemma 4 E4B at 12 tok/s makes Ghost viable.
  23. Bishop = mini PC, not a GPU server. Training on CPU.
  24. Annual pricing: Pay 10, get 12.
  25. Laiv Checkup v1.0 BUILT. Tier-baked. Day 28 FREE for everyone.
  26. AQ monitoring v1.0 BUILT. Prism + Observer Rule #11.
  27. Multi-Sport Cache v1.0 BUILT. 31 leagues.
  28. Privacy hardening v2.7: 3 tables AES-256-GCM encrypted. 6 onboarding fields persisted.
  29. Workflow spine: Cloudflare KV is the shared brain. Business track separate (alaivos-biz-core/, alaivos-biz-kb).

APPENDIX B — Feature Gate Matrix (condensed subset)

File: lib/core/services/feature_gate.dart · 120+ features × 7 tiers.

Core App (ALL TIERS — universal)

All 14 modules (manual entry), local SQLite, E2EE messaging (Signal Protocol, universal, never gated), Laiv tour + module intros, USDA nutrition DB (3,519 foods), dark/light/system theme, CSV/OFX import, sessions + capsule download, Marketplace browse + install, cold OSRM routing, interactive map + POI discovery, voice navigation (Piper TTS, 21 languages), motorcycle time estimates, My Places, Trip View, offline maps (home city auto-download), Siri Shortcuts (7), Android VoiceInteractionService, OmniOrb (tap to speak), read-only sharing, Sessions dock, podcasts (iTunes Top), radio (Radio Browser API), circadian background, 6 home widgets, 14 modes, AQ Prism card.

Spark+ ($3.99)

Active sharing · on-device AI (Qwen XS + S) · AI auto-routing · auto-tagging · smart categorization · food photo analysis · OCR receipt scanning · cloud sync · night processing · DDG Standard (15/day) · Laiv Voice Standard · historic traffic patterns · family location sharing (E2EE, consensual) · contact address map pins · Marketplace rate · eye rest reminders · sports teams (10 max) · Quiniela unlimited · Watch Party · Laiv Checkup 6mo.

Core+ ($7.99)

Advanced AI (Qwen 4B) · semantic search · Laiv full chat · Morning Briefing (AI narrative) · basic pattern analysis · dimensional profiling (41 dims) · OCR cleanup · Nano drafting · live traffic estimates · smart departure push alerts · DDG 30/day · Marketplace publish + creator dashboard · Projects blueprints/templates · Health Connect/HealthKit integration · all home-screen widgets · Reader notes → Streams · Reader vocabulary spaced repetition · unlimited sports teams · AQ proactive alerts (Observer Rule #11) · Laiv Checkup 3mo.

Pro+ ($14.99)

Voice commands (structured) · deep pattern analysis · health-mood-productivity correlations · proactive suggestions · Night Shift (heavy AI) · Daily Biographer · embedding generation · focus analytics (advanced) · manual model routing · Night Shift override · traffic coloring on map · navigate deep link · multi-stop optimization · route alternatives · BYO API keys (Ghost) · DDG 50/day · Laiv Checkup 2mo.

Elite ($23.99)

Adaptive scheduling · AI health insights · deep cross-module correlations · continuous monitoring · priority AI processing · DDG unlimited · Ghost base included (50D/20I credits) · 1 bank connection included · AI book summaries (Reader) · Laiv Checkup 1mo.

Map gates (consolidated)

Gate Min Tier Controls
interactiveMap Starter Map renders, POI, search, My Places, Trip View, voice nav, motorcycle, offline maps
mapTrafficPatterns Spark Historic traffic ETA
mapLiveTraffic Core Live traffic, departure alerts
mapTrafficNavigate Pro Traffic coloring, alt routes, multi-stop, navigate deep link
mapFamilySharing Spark Family location sharing
contactMapPins Spark Per-address "Show on map" in People
checkupCadence Spark Post-trial Checkup cadence

Sports

Feature Starter Spark Core+
Follow teams 3 max 10 max Unlimited
Quiniela pools 1 Unlimited Unlimited
Watch Party

Reader

Feature Starter Spark Core Elite
EPUB/PDF reader
Highlights + dictionary
Eye rest reminders
Notes sync → Streams
Vocabulary spaced repetition
AI book summaries

Marketplace

Feature Starter Spark Core Pro Elite
Browse + install capsules
Rate capsules
Publish capsules
Creator dashboard
"For You" dimensional ranking

APPENDIX C — Psychographic Clusters (23 marketing personas)

Clusters are marketing personas for content targeting. Internal profiling uses the 11-trait composite model — users scored across trait dimensions, not slotted rigidly.

Tier 1 — Launch Priority (Waves 1-2)

# Cluster Age Entry hook Primary module Tier target
1 Juggler (Mom) 28-45 "POV: you need 8 apps for Monday" Events + Money + People Spark/Core
2 Expecting 25-38 "Week-by-week without data harvesting" Wellbeing + Events + Planning Core
3 Scrapper (Budget) 20-40 "Know exactly where every dollar went" Money + Sessions Starter/Spark
4 Optimizer (Fitness) 22-40 "Your fitness data trains YOUR AI, not theirs" Wellbeing + Sessions + Focus Core/Pro
5 Chef (Cooking) 20-50 "3,500+ foods from a photo" Sessions + Money + Wellbeing Spark/Core
6 Student 17-25 "Pomodoro meets budget meets meal prep" Focus + Money + Projects Starter/Spark

Tier 2 — Growth Phase

Guardian (Caregiver) · Elder (Senior) · Hustler (Entrepreneur) · Tracker (Chronic illness) · Healer (Recovery) · Professional · (+ others).

Growth thesis

  • Budget: $0 paid marketing. 100% organic for v1.0.
  • Constraint: growth, not budget. Month-1 target: ~494 downloads, ~74 paid conversions (~15%), ~$407 MRR.
  • Engine: household viral loop (Mom → Partner → Quiniela → Friends) — each household averages 2-6 users.
  • Catalyst: FIFA World Cup 2026 (June 11 - July 19). Guadalajara hosts 4 Group A matches at Estadio Akron. Mexico vs Korea Republic on June 18 is the commercial peak.
  • Assets: 124K Instagram followers (LatAm young mothers) · German fitness influencer connection · founder in Guadalajara.
# Document Deploy status Attorney reviewed
1 App Privacy Policy Deploy pending — V2.7 updates required No — pre-revenue URGENT
2 Terms of Service Deploy pending — V2.7 updates required No — pre-revenue URGENT
3 Health Data Privacy Pending deploy No (MHMD-compliant)
4 Billing & Refund Terms Pending deploy No
5 Law Enforcement Guidelines Deploy pending — V2.7 update required No
6 Warrant Canary Re-sign by Apr 19 (30-day cadence) n/a
7 PGP Public Key Pending deploy n/a
8 Mexico LFPDPPP Notice Inline in Privacy Policy No
9 Brazil LGPD Notice Inline in Privacy Policy No — rely on ANPD small-agent exemption
10 Analytics & Telemetry Policy Drafting required
11 Website Privacy Policy Drafting required
12 Website Terms of Use Drafting required
13 DMCA Designated Agent Pending registration n/a
14 UK Online Safety Act notice Research complete

Core privacy principles

  • Zero-Data-Harvesting Architecture — technical guarantee enforced by encryption, not a policy.
  • Health data NEVER synced to cloud, NEVER in Ghost or Checkup prompts.
  • Messages / Chat: Signal Protocol E2EE (real, not stubs). Citerius cannot decrypt.
  • Checkup pipeline: dual anonymization (device strip → Gemma 4 E4B anonymizer on CX43 → Anthropic Batch API). Only anonymized aggregates leave device.
  • 3 tables encrypted AES-256-GCM (v2.7): shared_gift_notes, web_ai_content, ai_command_queue.
  • Phone collection at Day 14: hashed only, raw number deleted after verify. Cannot reverse hash to number (confirm-match only on LE page).
  • No third-party analytics on website (Cloudflare Analytics only, no cookies).

7 Anti-abuse layers (summary)

  1. Device fingerprint at signup (silent, stored in Supabase trial_devices).
  2. Phone verification mandatory at Day 14 (Twilio SMS, hash-stored).
  3. No data export on Trial/Starter.
  4. Investment score calculated at trial expiry.
  5. Behavioral detection (analytics-only, aggregate).
  6. Supabase RLS enforcement on all user-scoped tables.
  7. Rate limiting + server-side validation on Ghost relay.

APPENDIX E — Infrastructure Summary (no secrets)

Component Vendor Role Monthly
ghost-01 (Hetzner CX43, Helsinki) Hetzner Ghost Brain + Kokoro TTS + harvesting + Coturn + nginx + sports cache + Checkup relay + pipeline master €17
cx23 (Europe traffic) Hetzner Tier-1 live traffic collection (EU) + OSM/POI enrichment €4
cx23-b (Expansion) Hetzner DDG harvester + airport pipeline + secondary traffic €4
Supabase Supabase EU-central-1 project, auth + storage + RLS Free
Cloudflare (R2 + Workers + Pages + KV) Cloudflare CDN + Workers + Pages + KV shared brain Free
TheSportsDB Patreon Patreon Commercial ToS compliance $3
Anthropic API Anthropic Batch API (Checkup only) Variable (~$20 initial)

Cloudflare R2 (CDN) — public cdn.alaivos.com

Filename Model Size
laiv-xs.gguf Qwen 3.5 0.8B Q4_K_M 0.96 GB
laiv-s.gguf Qwen 3.5 2B Q4_K_M 2.55 GB
laiv-m.gguf Qwen 3.5 4B Q4_K_M 3.16 GB
laiv-l.gguf Gemma 4 E2B Q4_K_M 6.67 GB
laiv-xl.gguf Gemma 4 E4B Q4_K_M 8.95 GB
laiv-ghost.gguf Gemma 4 E4B Q4_K_M (server mirror) 8.95 GB
manifest.json v3, 7 tiers 4 KB

Backward-compat aliases: laiv-core-s/sm/m/l.bin. Also hosted: tts-eval/kokoro-voices/ (11 WAVs), tts-eval/kokoro-crosslang/ (15 WAVs), api/models.json, infra/airports/*.json.

Cloudflare Workers

  • photon.alaivos.com — Photon autocomplete (primary, Komoot fallback)
  • DDG search worker — universal search enrichment
  • alaivos-kb.alaivos26.workers.dev — KB API (MCP integration)

Cloudflare Pages (3 projects)

  • alaivos-com (alaivos.com)
  • hub-alaivos (hub.alaivos.com)
  • my-alaivos (my.alaivos.com)

Ghost-01 services (port map, no secrets)

Service Port Role
Ollama (gemma4:e4b default) 11434 LLM inference (~10 GB loaded RAM, 12 tok/s)
ghost-router 11435 (internal) Python proxy, injects gemma4:e4b default
sports-cache 8300 31-league multi-sport cache, 1hr TTL, stale-on-error
checkup-relay 8100 Device strip → Gemma anonymize → Anthropic Batch
nginx 443/80 Public HTTPS for ghost.alaivos.com
coturn 3478/5349 WebRTC TURN relay

Rollback command for Ghost routing if Gemma issue: swap to qwen3.5:9b in router config and restart service.

Ollama models installed: gemma4:e4b (ACTIVE, 9.6 GB), gemma4:e2b (7.2 GB, 21.8 tok/s), qwen3.5:9b (6.6 GB fallback, 5.6 tok/s), plus 0.8B / 2B / 4B reference.

KV namespace (shared brain)

  • Primary KV: ALAIVOS_KB — keys: master-kb, current-sprint, sprint-results, sprint-log, delta-findings, arch-decisions
  • Business KV (separate): alaivos-biz-kb (for alaivos-biz-core/ directory)
  • Agents read/write via: MCP (Omega), wrangler CLI (Epsilon), bash/curl (builders, Delta)

APPENDIX F — P0 Lessons (battle-tested)

Stack & widget layout - NEVER switch a Stack child between Positioned and non-Positioned at runtime. - KeyedSubtree inside StatefulWidget's build() preserves State. - A ValueKey on MaterialApp is DESTRUCTIVE — destroys Navigator and all route state.

Performance & heat - Throttle high-frequency Riverpod state updates (max 2/sec for download progress etc.). - SHA-256 on large files (1 GB+) blocks the UI. Use size-match validation or defer hash. - Debug APK runs 3-5× hotter than release. Always test release builds for heat.

Auth / Data - Username check catch block must return true on RLS/unknown errors (real collisions caught at INSERT). - After data wipe / fresh install: check Supabase user_profiles via RLS-fallback query. 6 onboarding fields persisted for reinstall recovery (v2.7).

Pipeline / Maps - Weather and AQ read from CDN (≤30 min stale), NOT live Open-Meteo. Only RainViewer radar tiles need live net. - POI labels: cards at z14-15 clutter the map. Use glass pins — dots z13-15, mini pins z16, detail z17+. - Factor chips in traffic UI: display minutes, not percentages.

Legal - Learning sources: curated legal only (gutenberg.org, openlibrary.org, standardebooks.org, manybooks.net, classcentral.com, khanacademy.org, theodinproject.com, openculture.com, alison.com). No piracy sites. - Privacy policy must include third-party AI processing line (Anthropic Checkup routing). - Warrant canary must be re-signed periodically (next due April 19, 2026).

Code discipline - SQLite writes MUST go through serializedWrite(). - Encrypted tables (v2.7, AES-256-GCM): shared_gift_notes, web_ai_content, ai_command_queue (latter required read+rewrite migration). - Git: never push to main, never force-push, never flutter-clean unless sprint says so.

End of MASTER_KB.md — generated 2026-04-14 from Omega v2.7 canonicals. Public file (no secrets). Next update on Omega v2.8.