built so your memory answers only to you.
memory is intimate data. we treat it as more sensitive than an average notes-app row and hold the line in the database, not just the interface. here is exactly how.
row-level securityevery row answers only to its owner, enforced in the database itself — not just the app. private by default.
credentials hashed at restaccess and API tokens are stored hashed. a database dump yields nothing an attacker could use.
oauth 2.1the same standard your tools already trust. no password ever passes through us.
encryption at rest, opt-incolumn-level encryption for sensitive dimension content, per project, behind a passphrase only you hold.
audit logprivileged events on your account are recorded, retained 90 days, and visible to you alone.
gdpr, honouredexport everything, delete everything, on demand. deletion is immediate; backups purge within 30 days.
the one boundary we won't pretend away
once an AI you connect reads your memory, that content is in that provider's hands under their policy. innernet never reads or shares anything until you connect a tool and turn it on — so connect the ones you trust.
report an issue
suspected a vulnerability? open a private advisory on GitHub, or read the full threat model in SECURITY.md.