Privacy Policy

Last updated: May 19, 2026

Introduction

ArcBrain ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our application and website.

1. Information We Collect

Local Data

ArcBrain is designed to run entirely on your local machine. We do not transmit your project data, conversation history, or memory files to our servers. All data is stored locally on your computer in:

~/.arcbrain/data/ (Linux/Mac)
%APPDATA%\ArcBrain\ (Windows)

API Keys (Optional)

If you choose to use ArcBrain with third-party AI providers (Anthropic, OpenAI, Google, Hugging Face, etc.), you may optionally store your API keys in the application. These keys are:

Stored locally — never sent to ArcBrain servers
Encrypted at rest using OS-level encryption
Sent only to the provider (e.g., api.anthropic.com) when you use the feature

We have no access to these keys. You are responsible for the security of your API keys. See each provider's privacy policy for how they handle your data:

Website & Analytics

When you visit arcbrain.dev, we collect:

Page views and user interactions (via optional Cloudflare Analytics)
IP address and browser information

We use this data to improve the website and understand user behavior. No personally identifiable information is collected without your consent.

2. How We Use Your Information

To provide and improve ArcBrain's functionality
To analyze website usage and performance
To send updates about new features (opt-in only)
To comply with legal obligations

3. Data Sharing & Third Parties

We do not sell, rent, or share your data. The only exceptions are:

API Providers: If you use OpenAI, Anthropic, Google, etc., your prompts and inputs are sent to their servers per their privacy policies
Legal Compliance: If required by law, court order, or government request

            ⚠️ Important: ArcBrain cannot access your local data. We have no backdoor, no telemetry, no analytics tracking your memory or conversations unless you explicitly enable an AI provider.
        

4. Data Retention

Your local data is retained as long as you keep it. You can delete it at any time by removing the ArcBrain data folder. Cloudflare analytics data is retained per their privacy policy.

5. Security

We implement reasonable security measures:

Local-first architecture: Your data never leaves your machine unless you explicitly send it to a third-party API
Encrypted connections: All website traffic uses HTTPS
No remote code execution: ArcBrain cannot execute remote code or access your files without your permission

6. Your Rights

You have the right to:

Access: View your local ArcBrain data at any time
Delete: Remove your data by deleting the ArcBrain folder
Opt-out: Disable analytics or API integrations at any time
Export: Your data is always under your control

7. GDPR & Privacy Laws

Since ArcBrain is local-first and processes data on your machine, GDPR and similar privacy regulations apply primarily to your use of third-party AI providers. We recommend:

Reviewing the privacy policies of any AI providers you connect to ArcBrain
Using ArcBrain without third-party API keys if you're in a regulated industry
Complying with your organization's data handling policies

8. Children's Privacy

ArcBrain is not intended for children under 13. We do not knowingly collect personal information from children. If we learn that we have collected personal information from a child under 13, we will delete such information promptly.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify users of any material changes by updating the "Last updated" date at the top of this page. Continued use of ArcBrain constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us at:

Email: support@arcbrain.dev
GitHub: wilhurley/memory-server