Your brain —
your secret
Security is DNA, not an afterthought. 5-layer DNA protection. Every call audited. Brain Export anytime. On-prem lite-build. You own your data.
Layered security model
AES-256 for the entire database. PostgreSQL column-level encryption for DNA chunks. S3 backups also encrypted.
TLS 1.3 on all endpoints. HSTS preload. Cert auto-rotate via Let's Encrypt. No HTTP fallback.
SHA-256 hashed (raw key never stored). Format hm_sk_ + 32 random chars. Scopes: store/recall/wiki/admin.
Every query filters by tenant_id. Complete data isolation between accounts. Federation audits each recall.
Atomic check_and_increment per plan tier. DDoS protection via Cloudflare. Per-IP throttle.
1MB default per request. 256MB for /v1/brain/import (bundle restore). 60s timeout on all requests.
5 layers protecting critical memories
DNA = preferences/decisions/identity/pitfalls/procedures. This is MemoryAI's core invariant. No background worker, no script, no person can overwrite them.
Domain guard (server/domain/dna_guard.py)
Pure Python static methods. No I/O. DNAGuard.is_dna(memory_type, zone, is_pinned) is the single source of truth. Every layer must go through this.
SQL exclusion predicate
DNAGuard.sql_exclusion_predicate() generates a WHERE clause excluding DNA. All workers (decay/retention/dream) include this — a bug in one place doesn't leak to others.
Worker check (per-worker assertion)
Sleeptime worker BUG-016 fix: cycle 1 + cycle 2 cross-check, downgrade DNA → fact + tag sleep-downgraded. LLM can never auto-create DNA.
Force flag + audit
Deleting DNA requires ?force=true + audit log entry. Cannot be "accidentally" deleted. DNA Integrity Worker runs hourly to verify checksums.
Mesh propagation block
One agent's DNA is NEVER propagated to another agent via mesh. Identity sovereignty even in multi-agent setups. filter_dna_from_results() applied on every recall.
Open code: dna_guard.py · 65 invariant tests · CI blocks on failure
GDPR-grade. Every access auditable.
audit_log_v2 records every store/recall/delete/export. PII hashed at insert (IP + UA = SHA-256 prefix).
Self-service DSR export in NDJSON. Per-plan retention 30/90/365/forever days.
"tenant_id": "abc-123-...",
"event_counts": {
"recall": 2147,
"store": 489,
"export": 3,
"delete": 12
},
"retention_days": 90,
"oldest_entry": "2026-03-04T..."
}
VN, EU, US compliance — on schedule
VN PDPA
Decree 13/2023 ✓. Optional data localization. Self-service DSR. VAT invoicing per Circular 78/2021.
GDPR (EU)
GDPR-grade audit trail shipped 2026-05. DSR export NDJSON. Right to erasure: hard-delete + audit. DPA available.
SOC 2 Type II
Observation period starts Q4/2026 with audit trail v2 shipped. Audit expected Q2/2028. Vendor: TBD.
HIPAA (US healthcare)
Roadmap Q2/2027. Requires BAA + dedicated infra. Lite-build on-prem is the path forward for enterprise healthcare.
ISO 27001
Dual-track with SOC 2 audit. Aligned controls. Cost-efficient certification.
Vendor neutrality
Brain Export JSON anytime. On-prem lite-build (Enterprise). Protocol v1 CC BY 4.0 — anyone can implement.
Found a bug? Report directly
Responsible disclosure. 24h response. Non-critical fix within 7 days. Bug bounty pilot Q3/2026.
Email: [email protected]
PGP: public key (fingerprint below)
Telegram: @memoryai_support
Reward: 12-month MemoryAI Pro credit for critical vulnerabilities, swag for high.
PGP fingerprint: TBD — generated when public bug bounty launches