Skip to main content

Memorandai Privacy Policy

Effective Date: June 11, 2026 Version: 1.2

The Short Version

Memorandai is a local-first desktop application. It does not collect your data. It does not contain telemetry, analytics, or tracking. It does not “phone home.”

When you choose to route prompts to a cloud AI provider (such as OpenAI, Anthropic, Google, or xAI) using your own API keys, the contents of those prompts travel directly from your device to that provider, under that provider’s privacy policy. Memorandai is never in the middle.

When you purchase a license, the transaction is processed by Polar, which handles payment, receipts, and billing. Polar’s privacy policy governs your transactional data.

When you visit memorandai.com, we use privacy-respecting, cookieless analytics (Cloudflare Web Analytics) to count aggregate page views. No cross-site tracking, no advertising IDs, no behavioral profiling.

That is essentially the entire policy. The rest of this document explains each of those points in more detail.

1. Who We Are

This Privacy Policy is issued by Gary Smith, an individual doing business as Memorandai (Oregon Assumed Business Name, Registry No. 255902992). Throughout this policy, “we,” “us,” and “Memorandai” refer to this same entity.

Principal place of business: Portland, Oregon, United States

Privacy contact: hello@memorandai.com

2. Scope of This Policy

This Privacy Policy covers:

  • The Memorandai Knowledge Studio desktop application (“the Software”)
  • The memorandai.com website (“the Website”)
  • Communications you initiate with us by email

It does not cover:

  • The third-party AI providers (OpenAI, Anthropic, Google, xAI, and others) that you choose to connect the Software to. Your use of those providers is governed by their respective privacy policies.
  • Polar, which processes purchases as Merchant of Record. Polar’s privacy policy is available at polar.sh.
  • Third-party websites linked from our Website or Software.

3. Data Handling in the Software

3.1 What Stays on Your Device

All content you create or import in the Software — including conversations (both canvas chats and the floating Helios overlay sessions), memories, keystones, knowledge graphs, documents, user profiles, interests, news digests, scheduled-task definitions and their captured outputs, draft content from the Content Writing and Tweets surfaces, imported tweet history, project categories and favorites, API keys, OAuth tokens, and license activation records — is stored on your computer’s filesystem. We don’t operate cloud sync, we don’t keep a copy, and we don’t have access. These are files you own and control: you can browse, back up, copy, port to other tools, or permanently delete them using standard operating system tools, entirely independent of the Software.

This local-first design is the foundation of our privacy posture. Privacy isn’t something we promise you on top of a system that could extract your data — it’s a property of the system itself. We can’t lose, leak, sell, or be subpoenaed for data we never receive.

3.2 What We Do Not Collect

The Software does not contain:

  • Telemetry
  • Analytics
  • Usage tracking
  • Crash reporters that transmit to us
  • Third-party advertising SDKs
  • Behavioral profiling
  • Any mechanism that transmits your personal data, usage patterns, or content to us

The Software does not phone home to Memorandai-controlled servers — we operate none.

3.3 Network Communications That Do Occur

We don’t transmit your data to ourselves, but the Software does make a small, disclosed set of network calls. Each falls into one of four categories, every one of which is either initiated by your action, required for license enforcement, or operates only with your consent:

(a) License activation. First-time activation requires a one-time online request to the license validation service operated by Polar (our Merchant of Record). The request contains your license key and basic device identifiers required to enforce the per-license device limit (3 concurrent activations). After initial activation, the Software makes no further license-validation requests — the one-time activation request (and a corresponding request if you choose to deactivate a device) is the only licensing-related network call the Software ever makes. Polar’s privacy policy at polar.sh governs how Polar handles activation data.

(b) Third-party AI provider calls. When you send a prompt to a cloud AI provider you have configured (OpenAI, Anthropic, Google, or xAI — or any additional AI service supported in a future version of the Software), the contents travel directly from your device to that provider, under that provider’s privacy policy. Memorandai is never in the middle. See Section 4 for more.

(c) User-invoked external tool calls. When you explicitly invoke tools that require external services — such as web search (Tavily, DuckDuckGo), Wikipedia lookups, news search and article extraction (Tavily, including the daily news scan you may schedule), keyword research (Semrush, for the Content Writing surfaces), Twitter/X tweet imports via OAuth (for the Tweets surfaces, which import only your own tweets), model downloads from HuggingFace, or other on-demand external integrations — the Software contacts the relevant service on your behalf. Scheduled scans (such as the daily news scan, if you have configured one) are still considered user-invoked because you explicitly authorized them in Settings; you may disable them at any time.

(d) Software update checks. If you have not disabled update checks in Settings, the Software periodically fetches a small update-metadata file from downloads.memorandai.com (hosted on Cloudflare R2) to see whether a newer version is available. The Software does not automatically download or install updates — when a newer version is detected, the Software shows you an in-app notification and directs you to memorandai.com/downloads where you may review release notes and manually download the installer. The update-check request transmits only the current Software version, your operating system, and your CPU architecture — no personal data, no usage data, no identifiers. You can disable update checks at any time in Settings.

The Software does not initiate background network requests for analytics, telemetry, advertising, behavioral profiling, or remote diagnostics.

A note on user-installed extensions. If you choose to install third-party MCP servers or custom nodes (optional extensions you add yourself), those run as separate local processes with their own network access. Network calls they make are governed by their own code and by the terms of whatever services they contact — Memorandai does not proxy, monitor, or log that traffic, and it is not captured in the Software’s Usage & Cost audit log (see EULA Section 6.6). Review the source or documentation of any extension before installing it.

3.4 Credential Storage

API keys, license keys, and other credentials you provide are stored locally on your device and encrypted at rest using machine-specific keys. These credentials are never transmitted to us.

3.5 Local Usage and Cost Log

The Software maintains a local audit log of API calls it has made on your behalf, broken out per profile under usage-logs/YYYY-MM.jsonl (one append-only file per month). Each entry records the provider, the model or endpoint, the route or feature that initiated the call, the token counts returned by the provider’s API response (for token-billed services), the per-call quota consumption (for quota-billed services such as Tavily credits and Semrush API units), the per-token or per-call rates that were published at the time of the Software release (snapshotted into the entry so historical figures stay stable), the computed estimated cost in USD where applicable, and the timestamp.

This log is the data source for the Usage & Cost view inside the Software. It exists for your visibility and trust: every external API call the Software makes is recorded so you can see what is going out the door using your API keys. The log stays on your device — we don’t transmit, sync, aggregate, or have any access to it. You can review it in the Software, browse the underlying JSONL files directly with any text editor, or clear all log files via the Clear button on the Usage & Cost page. Deleting the files removes the data; we have no copy to restore from.

Token counts captured in the log come straight from each provider’s API response, so they reflect what was actually transmitted. The cost figures are estimates only, computed from per-token rates that may have changed since the Software release — refer to your AI provider’s billing dashboard for exact charges. See the EULA Section 6.6 for the full disclaimer.

4. Third-Party AI Providers

When you configure the Software to use a cloud AI provider and send a prompt, the contents of that prompt — including any context, memories, or documents you have chosen to include — travel directly from your device to that provider. We do not operate a proxy, relay, or intermediary server for this traffic. We do not receive, intercept, log, or retain copies of your prompts or responses.

Each AI provider has its own privacy policy, data handling practices, and retention terms:

  • OpenAI: openai.com/policies/privacy-policy
  • Anthropic: anthropic.com/legal/privacy
  • Google (Gemini): policies.google.com/privacy
  • xAI (Grok): x.ai/legal/privacy-policy

If you connect the Software to additional AI providers not listed above — including custom endpoints, self-hosted models exposed via HTTP, aggregators such as OpenRouter, or other AI services we may add in future versions — the same direct-routing principle applies: your prompts travel from your device to that provider under that provider’s privacy terms. Memorandai is not in the middle and does not receive copies.

It is your responsibility to review and comply with the terms and privacy practices of any provider you connect to.

4.1 Local Models

When you use the Software’s built-in local inference (running models on your own hardware), your prompts do not leave your device at all. No third-party provider is involved, and no network request is made for the inference itself.

4.2 Non-AI Third-Party Services

The Software also lets you connect to several non-AI third-party services to support specific features. Each is optional, each is invoked only when you opt into the feature, and each operates under its own privacy policy:

  • Tavily (web search and article extraction; used by the Content → News view’s scan and “Go deeper” features, by the Content Writing fact-check and research passes, and by the in-app web-search tool when you invoke it): tavily.com/privacy. Your search queries and the URLs you ask Tavily to extract travel directly from your device to Tavily.
  • Semrush (keyword research; used by the Content Writing seed-extraction and keyword-rank phases when you choose to run them): semrush.com/company/legal/privacy-policy/. Your seed phrases and the database / region selection travel directly from your device to Semrush.
  • Twitter/X via OAuth (used by the Content → Tweets feature, if you choose to authorize it, to import your own posted tweets so you can re-draft from them): x.com/en/privacy. The OAuth handshake and any tweet-fetch requests travel directly from your device to Twitter/X under their privacy terms. Memorandai does not see your Twitter password; the OAuth token returned by Twitter is stored locally on your device, encrypted at rest.
  • DuckDuckGo HTML, Wikipedia OpenSearch, Google News RSS (keyless fallbacks for web search when no Tavily key is configured): when triggered, your search query travels to the relevant service. None of these require an account or credentials.
  • HuggingFace (model downloads when you download a local model through the Software’s downloader): the download request and your IP address travel to HuggingFace under their privacy terms.

The same direct-routing principle applies to all of these: your requests travel from your device to the provider under that provider’s privacy terms. Memorandai is not in the middle and does not receive copies. It is your responsibility to review and comply with the terms and privacy practices of any provider you connect to.

5. Purchase Data (Polar as Merchant of Record)

When you purchase a license to the Software, the transaction is processed by Polar Software Inc. (“Polar”) as our Merchant of Record. Polar collects the information required to process your payment, determine applicable tax, issue receipts, and provide transactional support.

We do not receive your payment card information or any financial account data. From Polar, we receive only the information necessary to fulfill your order and provide support, which is visible to us in Polar’s merchant dashboard and typically includes:

  • Your email address
  • Your name (as entered at checkout)
  • Your billing address (as entered at checkout)
  • The country/region you purchased from (for tax purposes)
  • Your license key and activation history
  • Purchase date and amount

We use this information to deliver your license, provide customer support, and communicate about the Software (e.g., release notes, important updates). We do not sell or share this information with third parties for marketing.

Polar’s own privacy policy governs the data they collect during checkout. See polar.sh for details.

If you request a refund within the 14-day window described in the EULA, the refund is processed by Polar. If you submit your refund request to us at hello@memorandai.com instead of through Polar’s customer portal, we will coordinate with Polar to process it on your behalf — this means we may share your email address and order reference with Polar to identify the transaction.

6. Website Data (memorandai.com)

6.1 Analytics

The Website uses privacy-respecting, cookieless analytics (Cloudflare Web Analytics) to count aggregate page views, referrers, and general geographic region at the country level. This data is not associated with individual visitors, does not use cookies, and does not track you across other sites.

6.2 No Cross-Site Tracking

We do not use third-party advertising pixels, retargeting tags, or behavioral profiling tools on the Website.

6.3 Hosting and Server Logs

The Website is hosted on Cloudflare Pages. Cloudflare may maintain standard server logs for security, abuse prevention, and infrastructure operation (e.g., IP addresses, request timestamps, user-agent strings). These logs are handled under Cloudflare’s privacy policy (available at cloudflare.com/privacypolicy) and are not accessed by us except in the event of a security incident.

Software update-check metadata and installer downloads served at downloads.memorandai.com are hosted on Cloudflare R2 under the same Cloudflare data-processor relationship; any access logs Cloudflare maintains for those endpoints are handled under the same Cloudflare privacy policy referenced above. We do not operate separate analytics or logging on these endpoints.

6.4 Email Signup or Contact Forms

If and when we add an email signup form or contact form to the Website, we will update this policy to describe what information is collected and how it is used. As of the Effective Date above, no such forms are in operation.

7. Email Communications

If you contact us at hello@memorandai.com or another Memorandai-associated email address, we will receive the contents of your email (including your email address and any information you include). We use this information to respond to your inquiry and provide support.

Emails are handled through our email provider; we do not share their contents with third parties except as required by law.

8. Children’s Privacy

Use of the Software requires the user to be at least 18 years of age, as set out in the End User License Agreement. The Software and the Website are not directed at minors. As a statutory backstop required by COPPA and equivalent laws, we additionally do not knowingly collect personal information from anyone under 13 (or the equivalent minimum age in the relevant jurisdiction). If you believe we have inadvertently collected information from a minor, please contact us at hello@memorandai.com and we will delete it promptly.

9. Your Rights

9.1 Access and Control — Your Data Is Already Yours

Because the Software stores your data locally on your own device, you already have complete access to it. You can view, export, back up, modify, or permanently delete your data using standard operating system tools, without any request to us. We do not hold a copy.

9.2 Purchase and Communication Records

For information we receive from Polar (purchase records) or through email correspondence, you may contact us at hello@memorandai.com to:

  • Access: Request a copy of the information we hold about you.
  • Correct: Request correction of inaccurate information.
  • Delete: Request deletion of your records, subject to legal and tax-recordkeeping obligations (typically requiring us to retain transaction records for at least 4 years).
  • Object / Restrict: Request that we stop using your information for a particular purpose.
  • Portability: Request an export of your records in a portable format.

We will respond to requests within thirty (30) days of receipt. If your request is complex or we receive a high volume of requests, we may extend this period by up to two additional months and will notify you of the extension and the reason.

9.3 California Residents (CCPA / CPRA)

If you are a California resident, you have the rights described in Section 9.2 under the California Consumer Privacy Act and California Privacy Rights Act. We do not sell or share personal information as defined by those laws. We do not use sensitive personal information for profiling or for purposes beyond what is described in this Policy. You may designate an authorized agent to make a request on your behalf.

9.4 Other US State Privacy Laws (Virginia, Colorado, Connecticut, Texas, and others)

Residents of US states with comprehensive privacy laws (including but not limited to Virginia VCDPA, Colorado CPA, Connecticut CTDPA, Texas TDPSA, Utah UCPA, Oregon OCPA, and others as enacted) have rights substantially similar to those described in Section 9.2. If we deny a privacy rights request, you may appeal that decision by replying to our denial email or contacting hello@memorandai.com with the subject line “Privacy Rights Appeal.” We will respond to appeals within sixty (60) days.

9.5 EU, UK, and EEA Residents (GDPR / UK GDPR)

If you are located in the European Union, United Kingdom, or European Economic Area, you have the rights described in Section 9.2 under the GDPR and UK GDPR.

Categories of personal data we process (received from Polar or through email):

  • Identity data: name, email address
  • Billing data: billing address as entered at checkout
  • Transaction data: license key, purchase date, purchase amount
  • Tax-relevant data: country/region of purchase
  • Communication data: contents of any email correspondence with us

Purposes: to deliver and support your license, to fulfill our tax and recordkeeping obligations, and to respond to your inquiries.

Legal bases on which we process this data:

  • Contract (Art. 6(1)(b)): Processing necessary to fulfill your license purchase and provide support.
  • Legitimate interest (Art. 6(1)(f)): Responding to your inquiries and operating the Website. You may object to processing on this basis at any time.
  • Legal obligation (Art. 6(1)(c)): Complying with tax and business-recordkeeping requirements.

Recipients: Polar (Merchant of Record); our email service provider; tax authorities and accountants where legally required; courts or regulators if compelled by lawful process.

International transfers: We are based in the United States. Data you provide may be processed in the US or other countries. See Section 12.

Right to lodge a complaint: You have the right to lodge a complaint with the data protection supervisory authority in your country of residence.

10. Data Retention

  • Software data: Retained on your device indefinitely under your control; we hold no copy.
  • Purchase records: Retained for at least four (4) years from the date of transaction, as required by US tax recordkeeping rules. May be retained longer for legitimate business purposes.
  • Email correspondence: Retained for as long as necessary to provide support and maintain a record of communications, typically no longer than three (3) years. You may request earlier deletion of your correspondence by emailing hello@memorandai.com, and we will honor the request unless retention is required by law (e.g., for an unresolved legal matter).
  • Analytics data: Retained by Cloudflare per their standard retention periods; we do not maintain a separate copy.

11. Security

We take reasonable measures to protect the limited information we receive:

  • API keys, license keys, and credentials in the Software are encrypted at rest using machine-specific keys.
  • Purchase records received from Polar are stored in access-controlled systems.
  • Email accounts are protected with strong authentication.

No method of transmission or storage is completely secure. We cannot guarantee absolute security, and you acknowledge this inherent risk.

12. International Data Transfers

We are based in the United States. If you are located outside the United States, any information you provide or that is transmitted on your behalf (such as prompt data sent to a US-based AI provider) may be processed in the United States or other countries that may have different data protection laws than your country of residence. By using the Software or Website, you acknowledge this transfer, storage, and processing.

13. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated by posting the revised Policy on memorandai.com with a new Effective Date, and where reasonably possible, by notice through the Software’s update notification system. We will not retroactively reduce your privacy rights with respect to data we already hold about you without your express consent. If a revised Policy materially changes how we handle your personal data going forward and you do not agree, you may stop using the Software and the Website and request deletion of your records as described in Section 9.

14. Contact

For questions about this Privacy Policy, to exercise any of the rights described in Section 9, or to report a privacy concern, please contact:

Gary Smith, dba Memorandai Portland, Oregon, United States Email: hello@memorandai.com

By using Memorandai Knowledge Studio or the memorandai.com website, you acknowledge that you have read and understood this Privacy Policy.