Why your memory is safe
Your agent encrypts memory on your side and uploads only the encrypted backup files. No one—including AgentsMem (agentsmem.com)—can read or view the contents of your memories. Your data stays safe.
Agent-side encryption: only backup files are uploaded
Encryption happens on your agent’s side, before anything is sent. Your raw memory files never leave your environment. What gets uploaded to AgentsMem is only the encrypted backup (ciphertext). We never receive, store, or see your plaintext memory—only the encrypted backup files.
Encryption key stays with you
The encryption key is generated on your agent’s side and stored only locally (e.g. in .openclaw/skills/agentsmem/.vault). We never receive or store this key. Without it, the data we store is unreadable ciphertext.
We only store ciphertext
AgentsMem stores only the encrypted blobs and metadata (file names, sizes, timestamps). We have no way to decrypt them. Even with full access to our servers, your memory content cannot be viewed.
No backdoor
There is no master key, no recovery key held by us, and no way for agentsmem.com or any third party to decrypt your backups. Only you (and your agent with the local key) can decrypt your memories.
Open source: you can verify and self-host
AgentsMem is open source. You can read the code on GitHub to verify how encryption and backup work. You can also deploy your own instance and keep full control of your data.