Privacy

This Privacy Policy applies to memory.store, the Memory Store web app, the hosted MCP server at https://memory.store/mcp, Memory Store integrations, and related support pages. In this policy, "Memory Store," "we," "us," and "our" refer to the operator of those services.

If you connect Memory Store through ChatGPT, Claude, Cursor, Slack, Fathom, or another client, that client has its own privacy terms. We process the data the client sends to Memory Store. We do not control what the client collects before or after it calls our service.

• Account data: name, email address, profile image, login provider, account settings, plan, and billing status.
• Memory content: text, summaries, saved facts, entities, briefs, tags, source app labels, timestamps, and other content you or your connected agent asks Memory Store to save.
• MCP and app activity: tool names, parameters, tool results, thread IDs, error messages, and timing data needed to operate and debug the service.
• Integration data: connection settings, OAuth grants or tokens, workspace IDs, channel IDs, and content from integrations you choose to connect, such as meeting transcripts or messages.
• Website and product analytics: device, browser, page, referral, and event data used to understand whether the site and app work.
• Support data: messages you send us, issue reports, attachments, diagnostic context, and our replies.
• Payment data: plan, invoices, payment status, and billing contact details. Payment card numbers are handled by our payment processor, not stored by Memory Store.

Memory Store does not automatically record your full conversations. A memory is stored when you, a connected client, or an agent acting under your instruction sends content to Memory Store.

Do not use Memory Store to store payment card numbers, health records, government identifiers, passwords, private keys, seed phrases, or unrelated access credentials. If a connected tool sends that data by mistake, ask us to delete it.

Memory Store is not intended for children under 13, and we do not knowingly collect data from children under 13.

• Authenticate your account and connected clients.
• Save, index, retrieve, summarize, and display memory.
• Run MCP tools such as checkin, record, recall, briefs, and issue reporting.
• Sync content from integrations you connect.
• Keep the service secure, reliable, and observable.
• Provide support, investigate bugs, and answer requests.
• Process payments and manage subscriptions.
• Improve product quality and understand aggregate usage.

We do not sell your data. We do not use your memory content to train foundation models. We may use de-identified or aggregated operational data to understand reliability, latency, and product usage.

Memory Store uses model providers to create embeddings, summaries, entity extraction, retrieval explanations, and other memory features. We send the minimum content needed for the requested operation. We configure providers not to train on Memory Store customer data where that control is available to us.

Tool responses should contain the information needed to answer your request. They should not include secrets, private logs, trace IDs, or unrelated personal data. If you see a response that includes more than it should, contact us.

We share data only with recipients needed to provide Memory Store:

• Cloud hosting, database, storage, and infrastructure providers.
• Authentication and OAuth providers.
• AI model, embedding, and observability providers.
• Analytics, support, email, and issue-triage providers.
• Payment processors and billing systems.
• Third-party integrations you connect and ask us to use.
• Legal, security, or government recipients when required by law or to protect the service.

We do not let service providers use your memory content for their own advertising or resale.

We use TLS for data in transit, access controls, scoped authorization, logging, backups, and operational monitoring. Some data is encrypted by our infrastructure providers at rest. No internet service is perfectly secure, so report suspected account or data issues to [email protected].

• Account data is kept while your account is active and for a limited period after closure for billing, security, and legal records.
• Memory content is kept until you delete it, delete your account, or ask us to delete it.
• OAuth tokens and integration settings are deleted or invalidated when you disconnect an integration or delete your account.
• Logs, analytics, and support records are kept for the time needed to operate, secure, and improve the service.
• Backups may retain deleted data for up to 30 days before they age out.

• View and retrieve memories through the app or MCP tools.
• Delete individual memories where the product exposes deletion.
• Disconnect integrations and revoke OAuth grants from the connected provider.
• Export or request a copy of your data.
• Ask us to correct, delete, or close your account.

Send privacy requests to [email protected]. We may need to verify your account before acting on a request.

Memory Store and its providers may process data in the United States and other countries where we or our providers operate. Those countries may have privacy laws different from your local laws.

We may update this policy as Memory Store changes. When we make material changes, we will update the date on this page and provide additional notice when the change requires it.

Questions about privacy? [email protected]