Privacy-first AI memory, secure by design.
Layar is built to keep your memory private-by-default, with scoped access, secure sessions, controlled exports, and enterprise controls in development.
Private-by-default Vaults
Memory is scoped to the signed-in user and their Vault. Layar is built to keep private data private by default.
Scoped data access
Ask, exports, locker access, and API calls are scoped to the current owner or workspace context.
Secure sessions
Sessions are stored server-side, verified on each request, and designed to expire after inactivity.
Encrypted transport
Traffic is served over HTTPS in production. Managed Postgres connections are configured over SSL.
Controlled exports
Exports are generated on demand, scoped to the owner, and logged so users can review usage.
Deletion and portability
Users can export memory and remove stored memory from the product controls already in the app.
Current security checks
These are the controls we actively enforce today. They are intentionally practical and specific rather than overstated.
Production storage plan
Layar is moving production file storage to private managed object storage. The target architecture is a private Supabase Storage bucket with signed URLs only and no public uploads.
That keeps uploaded files off public paths while preserving strict owner scoping for retrieval, export, and deletion.
Auditability and control
Login, logout, uploads, Ask usage, exports, failed access attempts, deletes, and settings changes are tracked in the audit layer so administrators can review activity and spot issues early.
Enterprise roadmap
Enterprise controls are in development. We are not claiming certifications we do not yet have.