Privacy Policy

Last updated: 14 April 2026

Who We Are

POWER MEMORY ("we", "us") is a Memory as a Service platform operated from the United Kingdom. We provide AI memory vaults that let you store, organise, and retrieve personal context across any AI platform.

Contact: contact@powermemory.ai

What We Collect

We collect the minimum data needed to provide our service:

✓

Email address — used for authentication via magic link. We do not collect your name, phone number, physical address, or any other personal identifiers.

✓

Memories — text content you choose to store in your vault. You control what goes in and what gets deleted.

✓

API keys — hashed cryptographic keys for MCP access. We store only the hash, never the full key.

What We Do NOT Collect

✗Names, phone numbers, or physical addresses

✗Payment information (free tier only at this time)

✗Analytics, tracking pixels, or third-party cookies

✗IP addresses for profiling or advertising

✗Browsing history or device fingerprints

How We Protect Your Data

Your memories are encrypted at rest using SQLCipher (AES-256 encryption). All connections use TLS 1.2+ (HTTPS). API keys are stored as SHA-256 hashes — we never store the original key. Session tokens are HTTP-only, secure cookies with strict SameSite policy.

Third-Party Services

We use one third-party service:

Resend (email delivery) — processes your email address solely to deliver magic link authentication emails. Region: EU (Ireland). Resend Privacy Policy.

We do not use Google Analytics, Facebook Pixel, or any advertising or tracking services. We do not sell, share, or trade your data with anyone.

Cookies

We use a single cookie:

session — a JWT authentication token. HTTP-only, Secure, SameSite=Lax. Expires after 30 days. No tracking, no analytics, no third-party cookies.

Your Rights (GDPR)

Under UK GDPR, you have the right to:

Access — view all memories stored in your vault via the dashboard or MCP API.

Delete — remove any or all memories at any time. Delete your account by emailing us.

Export — retrieve all your data via the MCP API (memory_read).

Rectify — edit memories by deleting and re-creating them.

Object — contact us to object to any processing.

To exercise any right, email contact@powermemory.ai. We respond within 30 days.

Data Retention

Your memories are stored until you delete them. Magic link tokens expire after 15 minutes and are marked as used. If you delete your account, all data is permanently removed within 30 days.

Children

POWER MEMORY is not intended for children under 16. We do not knowingly collect data from children.

Changes

We may update this policy. Material changes will be communicated via email to registered users. The "last updated" date at the top reflects the latest version.