Privacy Policy

Last updated: June 18, 2026

Memora ("we," "us") provides the Memora desktop application. We are the controller of the personal data described here.

Our Approach

Memora is privacy-first by design. We collect only what we need to provide your memory layer, we make it visible to you, and we give you direct controls over it. Where we observe your activity, it's because you turned that observation on.

Information We Collect

Information you give us. Your name, email, and account details when you sign up, plus any feedback or messages you send us.

Interaction and observation data. When you authorize specific applications, Memora records how you interact with them — the actions you take, the sequence and timing of those actions, and relevant on-screen content within those apps — so it can build context about how you perform tasks. This is the core data Memora uses to function.

Device and technical data. Basic information such as your operating system version, app versions, and device hardware identification, used to operate and troubleshoot the app.

Diagnostic logs. Intermediate states and information produced by our internal data processing pipelines used to build your memory. Utilized for debugging and training purposes.

What We Don't Collect

Anything from applications you haven't authorized
Data while observation is paused or after you exclude an app

How We Collect It

We collect observation data locally on your device through permissions you grant, both within Memora (via the consent screen and per-app observation permissions) and through your operating system (for example, screen recording or accessibility access). You have full control over which apps are observed, and you can change this at any time.

Why We Use Your Data

To provide your memory layer and supply context to AI agent workflows
To operate, secure, troubleshoot, and improve the reliability of the service
To communicate with you about the alpha
To improve Memora's product and underlying models using data with any PII redacted

Legal Basis

Where laws such as the GDPR apply, we rely on your consent for observation and for optional uses, and on our legitimate interest in operating and securing the service. You can withdraw consent at any time, and withdrawing is as easy as giving it.

How We Store and Protect It

Data captured on your device is encrypted, transmitted to our cloud infrastructure, and stored there. It is hosted with Supabase and Google Cloud in the United States of America. We protect it with encryption in transit (TLS) and at rest (AES-256), access controls that limit which team members can reach your data, network safeguards, and ongoing review of our security practices. No system is perfectly secure, but we work to protect your information and will notify you of breaches as required by law.

Who We Share It With

We don't sell your data or share it for advertising. We share it only with:

Service providers and sub-processors who help us run Memora (such as cloud hosting), under contracts that limit their use of it
Authorities where required by law

How Long We Keep It

We keep your data while your account is active and for 100 days afterward, unless you ask us to delete it sooner.

Your Rights and Controls

You can, at any time, from within Memora or by contacting us:

See what's being collected
Pause observation or remove specific apps
Withdraw any consent you gave
Access, correct, or export your data
Delete your data or your entire account

Depending on where you live, you may have additional rights under laws like the GDPR or CCPA. To exercise any of these, use the in-app privacy controls or email contact@memoralabs.app.

Children

Memora isn't intended for anyone under 18, and we don't knowingly collect their data.

Changes to This Policy

We'll post updates here with a new version number and effective date, and notify you of material changes.