Legal

Privacy Policy

Last updated: May 4, 2026

1. Overview

MemoryLayer (“we”, “us”, “our”) operates memorylayer.in and provides a persistent memory API for AI agents. This policy explains what data we collect, why we collect it, and how we use it.

2. Data We Collect

Account data: When you sign up, we collect your email address and authentication credentials managed via Supabase Auth.

API usage data: We log API call counts, operation types, and machine IDs associated with your API key. We do not log the content of memories you store locally through the software.

Payment data: Payments are processed by Razorpay. We do not store credit card numbers or financial account details. We receive subscription status and tier information only.

Memory content: MemoryLayer runs as a local npm package on your own machine. The content of memories you store is never transmitted to or stored on our servers.

3. How We Use Your Data

  • To provision and manage your API key and subscription tier
  • To enforce daily API call limits based on your plan
  • To send transactional emails (key delivery, billing receipts)
  • To display usage analytics in your dashboard
  • To respond to support requests

We do not sell your data, use it for advertising, or share it with third parties except as described in this policy.

4. Third-Party Services

  • Supabase — authentication and API key database
  • Razorpay — payment processing and subscription management
  • Resend — transactional email delivery
  • Vercel — hosting of the web application and API

Each provider has their own privacy policy. We share only the minimum data necessary for each service to function.

5. Data Retention

We retain your account and usage data for as long as your account is active. API usage logs are retained for 90 days. If you delete your account, we delete your personal data within 30 days, except where retention is required by law.

6. Your Rights

You have the right to access, correct, or delete your personal data. You can delete your account from the Settings page at any time. For any data requests, contact us at support@memorylayer.in.

7. Cookies

We use only essential cookies required for authentication (Supabase session tokens). We do not use tracking or advertising cookies.

8. Security

API keys are stored hashed. All data is transmitted over HTTPS. We follow industry-standard security practices. If you discover a security vulnerability, please report it to support@memorylayer.in.

9. Changes

We may update this policy. Material changes will be communicated via email. Continued use of the service after changes constitutes acceptance.

10. Contact

Questions about this policy: support@memorylayer.in