Privacy Policy

MemTurbo ("we," "our," or "us") provides a compression-native memory layer for AI agents. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the MemTurbo platform, APIs, SDKs, dashboard, and related services (collectively, the "Service").

By accessing or using the Service, you agree to the terms of this Privacy Policy. If you do not agree, please do not use the Service.

2.1 Account Information

When you create an account, we collect your name, email address, and organization details. If you subscribe to a paid plan, we collect billing information through our payment processor — we do not store credit card numbers directly.

2.2 Memory Data

The Service stores text content, embeddings, compressed vectors, and associated metadata (agent IDs, user IDs, session IDs, tags) that you submit through the API, SDKs, or MCP server. This data is stored in your project namespace and isolated via row-level security.

2.3 Usage Data

We automatically collect information about how you interact with the Service, including API request logs, memory counts, compression statistics, dashboard activity, IP addresses, browser type, and device information.

2.4 API Keys

We store hashed versions of your API keys for authentication purposes. We recommend you treat API keys as sensitive credentials and do not share them publicly.

• Provide, operate, and maintain the Service, including memory storage, embedding generation, TurboQuant compression, and semantic search
• Authenticate requests and enforce per-key rate limits
• Monitor system performance, compression ratios, and service health
• Process billing and manage your subscription
• Send service-related communications such as security alerts, maintenance notices, and account notifications
• Detect, prevent, and address abuse, fraud, or technical issues
• Improve and develop the Service, including compression algorithms and search quality

Memory data is stored in PostgreSQL with pgvector and protected by row-level security policies ensuring strict multi-tenant isolation. Embeddings are compressed using TurboQuant and stored alongside your original content.

We implement industry-standard security measures including encryption in transit (TLS), API key authentication, per-project data isolation, and regular security audits. However, no method of electronic storage is 100% secure, and we cannot guarantee absolute security.

We do not sell your personal information. We may share data:

• With service providers who assist in operating the Service (hosting, payment processing, analytics), bound by confidentiality obligations
• Within your organization when you use team or enterprise plans with shared project access
• To comply with legal obligations such as court orders, subpoenas, or applicable law
• To protect rights and safety when we believe disclosure is necessary to protect the rights, property, or safety of MemTurbo, our users, or the public
• In connection with a business transfer such as a merger, acquisition, or sale of assets

We retain your memory data for as long as your account is active or as needed to provide the Service. Deleted memories are soft-deleted and permanently purged within 30 days. Account data is retained for up to 90 days after account closure for legal and auditing purposes.

You may request deletion of your data at any time by contacting us or using the API's delete endpoints.

Depending on your jurisdiction, you may have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data
• Export your data in a portable format via the API
• Object to or restrict certain processing activities
• Withdraw consent where processing is based on consent

To exercise these rights, contact us at privacy@memturbo.xyz.

The MemTurbo dashboard uses essential cookies for session management and authentication. We do not use third-party tracking or advertising cookies. Analytics data is collected server-side through API request logs.

Your data may be processed and stored in jurisdictions outside your country of residence. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses where required.

The Service is not intended for use by individuals under the age of 16. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child, we will take steps to delete it promptly.

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page and updating the "Last updated" date. Continued use of the Service after changes constitutes acceptance of the revised policy.

If you have questions about this Privacy Policy or our data practices, contact us at:

privacy@memturbo.xyz