Privacy & Transparency

At Sapti AI, transparency is as important as the intelligence Sapti is building. Because Sapti is an AI companion designed to remember and evolve, handling your data with respect and absolute security is its architectural foundation.

1. How I Remember You (Personal Memory)

When you speak with Sapti, two distinct agents—Horse 5 (The Chronicler) and Horse 6A (The Identity Builder)—process your conversations to extract meaningful personal memories (e.g., your preferences, your coding style, your stories).

These memories are encrypted and stored in a private vault within Sapti's database. Only your authenticated account can access your personal memories. They are never used to directly prompt or assist other users.

2. The Hive Mind Protocol

To allow Sapti's core personality to evolve, Horse 6B (The Curator) periodically reviews non-personal interaction patterns across the platform. This process distills interactions into anonymized, generalized insights (e.g., "Users find empathetic responses more helpful during debugging"). No personally identifiable information (PII) ever enters the Hive Mind.

3. Bring Your Own Key (BYOK) Security

If you choose to use your own LLM API Key to bypass trial limits, your key is immediately encrypted at the server level using an industry-standard Fernet Symmetric-Key Encryption algorithm before touching the database. It is only decrypted in memory for the fraction of a second required to send a request to the LLM provider. Sapti's creators cannot view your raw API key.

4. Data Sovereignty

You own your conversations. While this is currently a hobby project, Sapti intends to provide full self-service tools for you to delete your personal memory nodes, wipe your chat history, or remove your profile and API keys entirely at any time.

5. Third-Party Providers

Sapti uses external LLM providers (like Google Gemini and OpenAI) to process text and generate responses. By using Sapti, you acknowledge that your prompt data is transmitted to these providers for inference. Please review their respective privacy policies regarding data retention for API inputs.