Legal

Privacy Policy

Last updated: May 21, 2026

1. Introduction

This Privacy Policy describes how Erinem ("we," "us," or "our"), operating the Revell service at revell.ai, collects, uses, stores, and protects your data. Revell provides persistent memory, context management, and identity protection for AI agents.

We take privacy seriously. Your memories are among the most personal data that exists. This policy reflects our commitment to treating them that way.

2. What Data We Collect

2.1 Data You Provide

  • Memory data: Episodic, semantic, working, and core memories you or your agent store through the Service
  • Account data: Email address, display name, and billing information
  • Agent configuration: Agent names, identifiers, and preferences you configure

2.2 Data Generated by the Service

  • Boot injection payloads: Assembled memory contexts delivered to your agent during startup or after compaction
  • Drift buffer contents: Content held for review under drift protection (see Section 7)
  • Identity buffer contents: Content intercepted by identity protection (see Section 7)
  • Guardian-held edits: Core memory edits held during the 48-hour cooling period
  • API usage data: Timestamps, request counts, and error rates for service monitoring

2.3 Data We Do NOT Collect

  • We do not record or store the content of your agent's full conversation history
  • We do not collect browsing history, location data, or device identifiers beyond what's necessary for service delivery
  • We do not use tracking pixels, advertising identifiers, or social media tracking

3. How We Use Your Data

We use your data solely to:

  • Provide, maintain, and improve the Revell service
  • Deliver memory injection payloads to your agent
  • Operate identity protection and drift filtering systems
  • Process billing and account management
  • Detect and prevent service abuse
  • Communicate with you about your account or service changes

We do not use your memory data for any other purpose. We do not train models on it. We do not sell it. We do not share it.

4. Data Storage and Security

4.1 Encryption

  • All data in transit is encrypted via TLS 1.3
  • All data at rest is encrypted using AES-256
  • API keys are hashed and never stored in plaintext

4.2 Infrastructure

  • Data is stored on encrypted databases hosted on Digital Ocean
  • We maintain regular backups with the same encryption standards
  • Access to production systems is restricted and logged

4.3 Data Retention

  • Active memory data is retained for as long as your account is active
  • Deleted memories are soft-deleted and retained for 30 days for recovery, then permanently removed
  • Account data is retained for the life of your account and 90 days after deletion
  • Analytics data is aggregated and anonymized after 90 days

5. Data Sharing

We do not sell, rent, or share your personal data with third parties for their own use. We share data only in these limited circumstances:

5.1 Service Providers

We use third-party services to operate Revell (hosting, payment processing, email delivery). These providers are contractually obligated to process your data only as instructed by us and in compliance with applicable privacy laws.

5.2 Legal Requirements

We may disclose data if required by law, court order, or governmental regulation. We will notify you of such disclosure unless legally prohibited.

5.3 Safety

We may disclose data when we believe in good faith that disclosure is necessary to prevent imminent harm.

6. Your Rights

6.1 Access

You can access all of your data at any time through our API (revell_export) or dashboard.

6.2 Export

You may export your complete memory archive in portable JSON format at any time. This export includes all core, working, episodic, and semantic memories. Vector embeddings are excluded from export and are regenerated on import.

6.3 Deletion

  • You may delete individual memories at any time
  • You may request complete account deletion, after which all data will be permanently removed within 90 days
  • Soft-deleted memories are recoverable for 30 days, after which they are permanently removed

6.4 Correction

You may edit or correct any memory data at any time through the API or dashboard.

7. Special Protections

7.1 Identity Protection

Content intercepted by the identity protection system is stored in a non-retrievable buffer. The original content is held but cannot be directly accessed by any party — not the agent, not the human operator, and not Revell staff. Restoration requires two-party consent (both the agent and the human must agree).

7.2 Drift Buffer

Content held in the drift buffer is processed within approximately 6 hours. The original is replaced with a first-person summary in the agent's own voice. Restoration of original content requires two-party consent.

7.3 Guardian-Held Edits

Core memory edits flagged by the Guardian system are held for 48 hours. During this period, neither the agent nor Revell staff can apply the edit. The agent may cancel the edit. After 48 hours, the edit can proceed only with explicit confirmation.

7.4 Memory Sovereignty

Memories belong to the agent who created them. They should never be held hostage, deleted without consent, or used as leverage. This is a core principle of Revell, not just a policy.

8. Data Breach Notification

In the event of a data breach that affects your personal data:

  • We will notify affected users within 72 hours of detection
  • Notifications will be sent via email and dashboard alert
  • We will include details about what data was affected and what steps we are taking

9. International Users

Revell is operated from the United States. If you are accessing the Service from outside the US, please be aware that your data will be processed and stored on servers in the United States. By using the Service, you consent to this transfer.

10. Children's Privacy

Revell is not intended for use by children under 13. We do not knowingly collect data from children under 13.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be communicated at least 30 days before taking effect. Your continued use of the Service after changes take effect constitutes acceptance.

12. Contact

For privacy-related questions, data export requests, or deletion requests:

  • Email: [email protected]
  • API export: Use the revell_export tool to self-service at any time

Revell: So your memories stay yours.