Privacy Policy

Last updated: February 12, 2026

Overview

Engram is a visual browser for AI agent skills and memories. We are committed to protecting your privacy. This policy explains what data Engram collects, how it is used, and your rights.

Data We Collect

When you sign in with GitHub OAuth, we receive:

GitHub username and display name
Profile avatar URL
Email address (as provided by GitHub)
OAuth access token (encrypted at rest, used to read your repositories)

When you use the app, we store:

Skills and memories synced from your GitHub repositories
Agent session metadata and cost analytics you choose to ingest
Your app preferences and API keys

How Data Is Stored

All data is stored on your self-hosted server. Engram is a self-hosted application — there is no central cloud database controlled by Engram. You own and control all your data.

GitHub OAuth tokens are encrypted at rest using AES-256 before being stored in the database.

Third-Party Services

GitHub API — Used to authenticate you and sync skills/memories from your repositories. Subject to GitHub's Privacy Statement.

Engram does not use any third-party analytics, advertising, or tracking services.

Data We Do Not Collect

No device identifiers or fingerprinting
No location data
No usage analytics or telemetry
No advertising or marketing data

Data Sharing

We do not sell, rent, or share your data with any third parties. Your data stays on your server.

Data Retention and Deletion

Since Engram is self-hosted, you have full control over data retention. You can delete your data at any time by removing it from your database or uninstalling the application.

Children's Privacy

Engram is not directed at children under 13. We do not knowingly collect data from children.

Changes to This Policy

We may update this policy from time to time. Changes will be posted on this page with an updated date.

Contact

If you have questions about this privacy policy, please open an issue on our GitHub repository.