VasperaMemoryMemory Layer for AI Tools

Privacy Policy

Last updated: 11/17/2025

1. Introduction

VasperaMemory ("we," "our," or "us") respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI memory platform and related services.

VasperaMemory is designed specifically for developers and provides AI-powered memory capabilities across development tools. We understand the sensitive nature of code and development data, and we've built our platform with privacy by design.

2. Information We Collect

2.1 Account Information

  • Email address and authentication credentials
  • Display name and profile information
  • Account preferences and settings

2.2 Development Data

  • Code Context: Code snippets, file structures, and project information you choose to capture
  • Memory Records: Decisions, patterns, and architectural choices you document
  • Project Metadata: Project names, descriptions, and organizational information
  • Usage Patterns: Tool interactions and memory access patterns for optimization

2.3 Technical Information

  • IP address and device information
  • Browser type and version
  • Operating system and IDE/editor information
  • API usage and performance metrics

3. How We Use Your Information

3.1 Core Platform Services

  • Providing AI memory and context management across your development tools
  • Generating semantic embeddings for intelligent code search and retrieval
  • Synchronizing context across Claude Code, Cursor, Windsurf, and other AI tools
  • Maintaining persistent memory of your development decisions and patterns

3.2 Platform Improvement

  • Analyzing usage patterns to improve memory accuracy and relevance
  • Optimizing vector search and context fusion algorithms
  • Developing new features based on aggregated usage data
  • Ensuring platform security and preventing abuse

3.3 Communication

  • Sending important service updates and security notifications
  • Providing customer support and technical assistance
  • Sharing product updates and new feature announcements (opt-in only)

4. Data Processing and AI

4.1 OpenAI Integration

We use OpenAI's embedding models to create semantic representations of your code and memories. This data is processed according to OpenAI's enterprise data policies:

  • Your data is not used to train OpenAI's models
  • Embeddings are generated and immediately returned
  • No code content is retained by OpenAI beyond the API call
  • All communications are encrypted in transit

4.2 Vector Storage

Your code embeddings are stored in our secure vector database (Supabase with pgvector) with:

  • End-to-end encryption at rest and in transit
  • Row-level security ensuring you only access your own data
  • Regular security audits and compliance monitoring
  • Automated backups with encryption

5. Data Sharing and Disclosure

5.1 We Do NOT Share Your Code

Your source code and development data remain private. We never sell, rent, or share your code content with third parties for commercial purposes.

5.2 Limited Sharing Scenarios

We may disclose information only in these specific circumstances:

  • With Your Consent: When you explicitly authorize sharing
  • Legal Requirements: To comply with applicable laws, regulations, or court orders
  • Security Threats: To protect against fraud, abuse, or security vulnerabilities
  • Service Providers: With trusted vendors who assist with platform operations (under strict confidentiality agreements)

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, user data may be transferred. We will notify you and ensure the new entity maintains the same privacy standards.

6. Data Security

6.1 Technical Safeguards

  • Encryption: All data encrypted in transit (TLS 1.3) and at rest (AES-256)
  • Access Controls: Role-based access with multi-factor authentication
  • Infrastructure: Enterprise-grade cloud infrastructure with SOC 2 compliance
  • Monitoring: 24/7 security monitoring and threat detection

6.2 Organizational Measures

  • Regular security audits and penetration testing
  • Employee background checks and confidentiality agreements
  • Incident response procedures and breach notification protocols
  • Privacy by design principles in all development processes

7. Your Rights and Choices

7.1 Data Control

  • Access: View all data we have about you
  • Correction: Update or correct your information
  • Deletion: Delete your account and associated data
  • Export: Download your data in a portable format
  • Restriction: Limit how we process your data

7.2 Communication Preferences

  • Opt out of marketing communications at any time
  • Choose notification frequency and types
  • Manage email preferences through your account dashboard

7.3 Exercising Your Rights

To exercise these rights, contact us at privacy@vasperamemory.com. We'll respond within 30 days and may need to verify your identity for security purposes.

8. Data Retention

  • Active Accounts: Data retained while your account is active and for legitimate business purposes
  • Inactive Accounts: Data may be deleted after 2 years of inactivity (with prior notice)
  • Account Deletion: Data permanently deleted within 30 days of account closure
  • Legal Requirements: Some data may be retained longer to comply with legal obligations

9. International Transfers

VasperaMemory operates globally. Your data may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses for EU data transfers
  • Adequacy decisions where applicable
  • Enterprise-grade security measures regardless of location

10. Children's Privacy

VasperaMemory is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you believe we have collected information from a child under 13, please contact us immediately.

11. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or applicable laws. We'll notify you of significant changes by:

  • Email notification to your registered address
  • Prominent notice on our website
  • In-app notifications for material changes

Continued use of VasperaMemory after changes constitutes acceptance of the updated policy.

12. Contact Information

For privacy-related questions, concerns, or to exercise your rights:

Email: privacy@vasperamemory.com

Subject Line: Privacy Inquiry - [Your Request]

Response Time: Within 30 days

13. Developer-Specific Considerations

13.1 Code Privacy

We understand that your code is your intellectual property. VasperaMemory is designed with developer privacy in mind:

  • You control what code context is captured and stored
  • All code analysis happens locally in your development environment when possible
  • Only the specific contexts you choose to share are processed by our AI systems
  • We never scan or analyze your entire codebase without explicit permission

13.2 Enterprise and Team Use

For enterprise and team deployments, additional privacy controls are available:

  • Self-hosted deployment options
  • Custom data retention policies
  • Advanced access controls and audit logging
  • Data residency requirements compliance