Fishbrain.aiFishbrain.ai

Security & Privacy

Fishbrain is a memory layer for LLMs. We sit between you and your models—which means we take data security and privacy seriously. Here's how we protect your data.

Start FreeHow It Works

Data Ownership

Your data and memories belong to you. Full stop.

  • We do not sell customer data or use private workspaces to train any shared model.
  • Your memories are scoped to your account and are not shared with other customers.
  • Fishbrain is designed for export and account deletion. You can take your data with you or remove it entirely.

Storage & Isolation

Your data is stored in a managed PostgreSQL database with multiple layers of protection:

Row-Level Security (RLS)

Database-enforced per-user isolation. Each query is automatically scoped to your account—no cross-tenant mixing is possible at the data layer.

Encryption at Rest

All data is encrypted at rest using cloud provider encryption (AES-256). Data in transit is protected via HTTPS/TLS.

Each user's memories are scoped by user ID and optionally by organization. Our application and database permissions are designed so one user's account cannot see another user's memories.

API Keys & Model Providers

You can bring your own provider keys (OpenAI, Anthropic, Google, xAI). Here's how we handle them:

  • API keys are stored server-side in encrypted storage, never exposed to other customers or sent to the browser.
  • All requests to model providers go through server-side logic—not directly from your browser.
  • Fishbrain does not add hidden markup on your provider tokens. We charge for Fishbrain features, not for reselling tokens.

Transparency & Control

This is Fishbrain's core differentiator: you can see exactly what your AI is using.

With the Context Manager, you can:

  • See exactly which memories were used to answer any question
  • Edit memory text or adjust importance scores
  • Delete memories entirely that you no longer want used

No black box. If your AI says something strange, you can trace it back to the exact memory that caused it—and fix it.

Deleting Your Data

You're free to delete individual memories, entire domains, or your complete account:

  • Delete individual memories instantly from the Context Manager or Memory page.
  • Export your data in standard formats (JSON, CSV, Markdown) before deletion.
  • Request complete account deletion—all associated data will be removed.

We're building toward automated self-service deletion. For now, account deletion requests can be sent to support@fishbrain.ai.

In summary

Your data, your rules

We don't sell data or train on private workspaces

Encrypted & isolated

RLS enforcement, encryption at rest and in transit

Full transparency

See exactly what context powers each response

Delete anytime

Export or remove your data whenever you want

This page explains our security approach in plain language. For formal legal terms, see our Privacy Policy and Terms of Service.

Ready to try transparent AI memory?

First month free. See exactly what your AI is thinking.

Start Free