privacy policy
Last updated: April 20, 2026 · Phase A (alpha)
We think privacy is a feature, not a nice-to-have. This document explains what Anamnesis collects, why we collect it, and — more importantly — what we refuse to do with it.
The one-paragraph version. We store the memories you send us, encrypted at rest with a key derived from your account. We serve those memories back only to you. We do not train AI on them. We do not sell them. We do not read them for marketing. If you delete them, they're gone.
01What we collect
We collect only what the service actually needs to work.
-
Account data. The email you sign up with, a
password hash (
argon2id, never the plaintext), the name you chose, and timestamps for account creation and last login. - Memory data. The episodes, echoes, and engrams you (or your AI tools on your behalf) write to Anamnesis. Stored per-user and encrypted at rest.
- API keys. A hashed form of your API key. We can't recover the plaintext — if you lose it, you rotate it.
- Operational logs. Request timestamps, response status codes, rough geographic region (from IP). Used to keep the service running and catch abuse. Logs age out on a 14-day rolling window.
02What we don't collect
- We don't use analytics cookies or pixels. No Google Analytics, no Segment, no Heap.
- We don't use advertising networks. No Facebook pixel, no retargeting.
- We don't use session replay tools. Your clicks and scrolls are yours.
- We don't track you across other websites.
03How your memories are protected
Each user has a set of per-user keys derived from their account
credentials using HKDF-SHA256. Memory payloads are
encrypted with AES-GCM before being written to disk. Two
facts follow from this:
- Even an attacker with file-system access to our servers cannot read memory payloads without the derived key.
- When you delete your account, the keys are destroyed along with it. Any residual ciphertext in rolling backups becomes unreadable within the backup window.
Transport is TLS 1.3 end-to-end. API keys, session cookies, and memory payloads never travel in cleartext between you and our servers.
04What we don't do with your data
- We don't train AI models on your memories. Not ours, not Anthropic's, not OpenAI's, nobody's. This is the single most important promise on this page.
- We don't sell, rent, or monetize your data. There's no data broker tier, no "anonymized aggregates" tier, nothing along those lines.
- We don't read your memories to improve the product. Our product improvements come from our own usage, friends-test feedback, and synthetic test data — never from reading live user memory.
- We don't share your data with advertisers or partners. The closest thing is the subprocessor list below — infrastructure providers that store or transmit the encrypted payload without ever decrypting it.
05Subprocessors
To run Anamnesis we use a small number of infrastructure providers. They store or transmit your encrypted data but don't receive the keys needed to read it.
- Fly.io — application hosting and attached volume storage (encrypted at rest at the volume layer in addition to our app-layer encryption).
- Resend — transactional email (verification links, password resets). Receives your email address and the message body; never receives memory content.
- Cloudflare — DNS and transit TLS. Does not have access to decrypted memory payloads.
We'll update this list when it changes. If a subprocessor is added in a way that materially changes the privacy posture, existing users get notice by email.
06Cookies
We use one first-party cookie: the session cookie that
keeps you signed in after login. It's HttpOnly,
Secure, and SameSite=Lax. No analytics
cookies. No advertising cookies. No third-party trackers.
07Your rights
Regardless of where you live, Anamnesis gives you:
- Access. Export everything we store about you from the dashboard.
- Deletion. Delete memories individually or your entire account. Deletion is permanent.
- Correction. Update your name, email, or password at any time.
- Portability. Export is a plain JSON archive — open format, no lock-in.
- Complaint. If you believe we've mishandled your data, contact hello@smtry.ai. You may also contact your local data-protection authority (EU, UK, California, etc.).
08Data retention
We hold account data and memories as long as your account exists. When you delete an account:
- Account rows and per-user keys are removed from the live database immediately.
- Memory files are removed from the live volume immediately.
- Encrypted backups age out on a rolling 30-day window. Because the per-user key has been destroyed, the residual ciphertext is already unreadable.
- Operational logs age out on a 14-day rolling window.
09Children
Anamnesis is not for children under 13. If we learn that a child under 13 has created an account, we'll delete it and any associated data.
10International users
Our servers are in the United States. If you use Anamnesis from outside the U.S., your data is transferred to and stored in the U.S. We rely on Standard Contractual Clauses where applicable and on the encryption architecture above to protect the data in transit and at rest.
11Security incidents
If we discover a breach that puts your account or memories at risk, we'll notify you without undue delay — in no case longer than 72 hours after we've confirmed the breach. Notifications include what happened, what data was affected, and what you should do.
12Changes
We may update this policy as Anamnesis evolves. Material changes are announced by email to the address on file and by updating the "last updated" date above.
13Contact
Questions, concerns, takedown requests, or legal notices: hello@smtry.ai.