The short version: Your memories are stored on your machine. Our relay routes encrypted traffic without seeing, storing, or logging your data. We are a zero-knowledge infrastructure provider.
What MNESIQ Is
MNESIQ is a personal AI gateway that runs on your hardware. It provides persistent memory, tool access, and model orchestration for AI assistants like Claude, Grok, and others. The memory engine (AmnesiaIQ) stores your data locally in a SQLite database on your machine.
What the Relay Does
The AmnesiaIQ relay at api.amnesiaiq.ai is a lightweight routing service that allows external AI services (like Claude.ai) to reach your local MNESIQ instance through an encrypted WireGuard tunnel. The relay:
- Routes traffic — forwards encrypted packets between AI services and your machine
- Manages accounts — stores your email, username, and hashed password for authentication
- Counts requests — tracks the number of MCP tool calls per account for billing purposes
What We Store
On the relay (our servers):
- Account information: email address, username, bcrypt-hashed password
- Tunnel metadata: assigned internal IP, WireGuard public key, connection status
- Usage counts: number of requests per account per day (no request content)
- OAuth tokens: session tokens for Claude.ai integration
On your machine (not our servers):
- All memories, preferences, goals, and personal data (SQLite database)
- Vector embeddings for semantic search
- Intent and goal tracking data
- Security audit logs and write signatures
- MCP client keys and access control configuration
What We Never See
- The content of your memories
- Your conversations with AI assistants
- Your files, documents, or personal data
- Search queries or recall results
- The body of any MCP tool call
The relay forwards WireGuard-encrypted packets. It cannot decrypt, inspect, or log the contents of your traffic. This is enforced by the WireGuard protocol (ChaCha20-Poly1305 encryption) — the relay physically cannot read the data it routes.
Encryption
- In transit: All traffic between your machine and the relay is encrypted via WireGuard (ChaCha20-Poly1305). Traffic between Claude.ai and the relay uses TLS (HTTPS).
- At rest: Memories are stored in a local SQLite database on your machine. Every memory write is cryptographically signed with HMAC-SHA256 for integrity verification.
- Backups: If you enable optional cloud backup (Google Drive, iCloud), data is encrypted with AES-256-GCM before leaving your machine.
Access Control
MNESIQ uses a clearance-based access control model. Each AI client that connects to your gateway is assigned a clearance level (Unclassified, Confidential, Secret, Top Secret) and optional compartments. Higher clearance can see memories at lower levels. Lower clearance cannot see up. You control these settings in the MNESIQ Gateway UI.
Third Parties
We do not sell, share, or provide your data to any third party. The relay does not have access to your data to share even if we wanted to.
We use the following infrastructure services:
- AWS — hosts the relay server (US East region)
- Cloudflare — DNS and CDN for api.amnesiaiq.ai
Data Retention
- Relay accounts: retained until you delete your account
- Usage logs: retained for 90 days, then automatically deleted
- Your memories: stored on your machine, managed entirely by you. We have no access to delete or modify them.
Your Rights
- Delete your account: removes all relay data (account, tunnel config, usage logs)
- Export your data: your memories are in a SQLite file on your machine — you already have them
- Disconnect: stop the relay tunnel at any time from the MNESIQ Gateway UI. Your memories remain on your machine.
Children
MNESIQ is not intended for use by anyone under 18.
Changes
We may update this policy as the product evolves. Significant changes will be communicated through the MNESIQ application.
Contact
Questions about privacy? Email support@amnesiaiq.ai