Security & data residency
Where the memory lives, and how to erase it
EU-hosted, encrypted, scoped per end user, and erasable with one call. Here’s exactly what touches your agents’ data.
EU data residency
Your agents’ memory lives on our own infrastructure in the EU. It is stored and processed in the EU, not replicated to the US. For European buyers this side-steps US CLOUD Act exposure that comes with US-hosted memory vendors.
Encryption
TLS for everything in transit. Encryption at rest on the database volume. API keys are never stored in plaintext — we keep only a SHA-256 hash, show the key once at creation, and verify in constant time. A leaked key can be revoked instantly.
One-call erasure (GDPR Art. 17)
Delete every memory and fact for one end user with a single call: DELETE /v1/users/{user_id}/memories. Facts are bi-temporal — a “forget” invalidates rather than mutating, so the audit trail stays intact while the fact stops being served. Your deletion endpoint wires straight to ours.
Your data is yours
We do not train any model on your stored memories or facts. The write path uses the Gemini API for extraction and embeddings only — inference, not training. You can delete your account and its data at any time.
Scoped isolation
Every memory is scoped by your account and an end-user namespace. Cross-tenant reads are impossible by construction — the scope is enforced server-side on every query, not by prompt discipline. One customer’s memories can never surface in another’s results.
Least-privilege keys
Keys carry explicit scopes (memories:read, memories:write). Prefixes (kor_live_ / kor_test_) make them recognizable to secret scanners. Revoke is instant and the masked key + last-used timestamp are visible in the dashboard.
Sub-processors
The third parties that process Agents memory data, and exactly what each one sees.
| Sub-processor | Purpose | Location | Data |
|---|---|---|---|
| Hetzner Online | Hosting & database | European Union (EU) | All memories, facts, embeddings, and account data at rest. |
| Google (Gemini API) | Fact extraction & embeddings on the write path | EU processing region | The text of a memory at write time, to extract typed facts and compute embeddings. Not used to train Google’s models. |
| Cloudflare | CDN & dashboard hosting | Global edge (no memory content stored) | Static dashboard assets and TLS termination. No memory content. |
| Firebase Authentication (Google) | Developer sign-in | EU processing region | Developer account email and auth tokens. Not your end users. |
Need a DPA or sub-processor list for procurement?
Email us with your company and use case. We’ll send the data processing agreement and answer security-review questions directly.
security@korely.aiSee also the changelog and the API reference.