Last updated: 9 July 2026
Your brain is yours. Each tenant's memory graph runs in its own isolated database. We don't read, mine, sell, or train on the contents of your graph. We touch it only to run and back up the Service for you, or when you ask us to.
Brainbox ("the Service") is operated by thexi.dev ("we", "us", "our"). For any privacy question, contact privacy@thexi.dev. TODO: formal legal entity + registered address
Where GDPR/UK-GDPR applies, our legal bases are performance of our contract with you and our legitimate interest in operating and securing the Service.
Brainbox runs on infrastructure operated by our sub-processors:
| Provider | Role | Location |
|---|---|---|
| Amazon Web Services (AWS) | Compute, identity (Cognito), your isolated tenant database | United States (us-east-1) |
| Cloudflare | Edge & tunnel, encrypted backup storage (R2), email routing | Global edge |
Your account email and graph are processed in the United States (AWS us-east-1); nightly backups are stored in Cloudflare R2.
Your brain is backed up nightly to per-tenant, encrypted object storage (Cloudflare R2) so you can't lose it. Backups are retained for TODO: retention window, e.g. 30 days and then rotated.
Depending on where you live (e.g. EU/UK GDPR, Kenya Data Protection Act 2019), you may have further statutory rights. Contact us to exercise any of them.
We keep your graph for as long as your account is active. On deletion, live data is removed promptly and backups age out within the retention window above.
Per-tenant database isolation, identity-verified access (Cognito RS256 id-tokens), no inbound ports on the node (admin only via AWS SSM), and per-tenant database secrets that never leave the host. No system is perfectly secure, but isolation is a first-class design goal.
The Service is not directed at children under 16, and we don't knowingly collect their data.
We'll post changes here and update the date above. We'll notify you of material changes by email.