Privacy Policy

Last updated: March 21, 2026

1. Introduction

This Privacy Policy describes how Hanamori Labs, LLC ("Company", "we", "us", or "our"), a Delaware limited liability company, operates Recall ("Service") available at recallmcp.com. This policy explains how we collect, use, and protect your information.

2. Information We Collect

Account Information

When you create an account, we collect your email address and authentication credentials via Firebase Authentication (Google sign-in or email/password).

Memory Data

The Service stores memory data that your AI agents create through the MCP protocol. This data is stored in encrypted, tenant-isolated namespaces. We do not read, analyze, or share your memory data.

Usage Data

We collect anonymous usage metrics including page views, feature usage, and performance data via Google Analytics. We also collect API audit logs (endpoint called, timestamp, status code) for operational monitoring.

Payment Information

Payment processing is handled entirely by Stripe. We do not store credit card numbers or payment method details on our servers. We retain your Stripe customer ID for subscription management.

3. How We Use Your Information

  • To provide, maintain, and improve the Service
  • To process payments and manage subscriptions
  • To send transactional emails (account verification, billing)
  • To monitor and prevent abuse or unauthorized access
  • To respond to support requests

4. Data Storage and Security

Your memory data is stored in isolated, encrypted storage (Redis / Valkey) with per-tenant namespace separation. Business data (accounts, subscriptions) is stored in PostgreSQL with SSL encryption. All data is hosted on Railway infrastructure in the United States.

5. Data Retention

Memory data is retained for as long as your account is active. API audit logs are retained for 30 days. When you delete your account, all associated data is permanently removed.

6. Third-Party Services

We use the following third-party services:

  • Firebase Authentication — user authentication
  • Stripe — payment processing
  • Google Analytics — anonymous usage analytics
  • Railway — infrastructure hosting
  • Honeybadger — error monitoring
  • Embedding providers (Voyage AI, Cohere, OpenAI) — semantic search embeddings (only embedding vectors are generated; raw content is not shared)

7. Your Rights

You have the right to:

  • Access your personal data
  • Delete your account and all associated data
  • Export your memory data via the API
  • Revoke API keys at any time

8. Cookies

We use essential cookies for authentication (Firebase session) and theme preference. Google Analytics uses cookies for anonymous usage tracking. No advertising cookies are used.

9. Children's Privacy

The Service is not intended for children under 13. We do not knowingly collect information from children under 13.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting a notice on the Service.

11. Contact

For privacy-related inquiries, contact us at:

Hanamori Labs, LLC
1111b South Governors Avenue
Dover, DE 19904
United States
Phone: +1 (484) 291-8909