← Back to memdev.app

GDPR & Data Rights

Last updated: May 2026

MemDev is committed to compliance with the General Data Protection Regulation (GDPR) and the rights of individuals in the European Union and European Economic Area. This page explains our approach to data protection and how to exercise your rights.

Our Privacy-First Architecture

MemDev is designed so that your most sensitive data — terminal session history — never leaves your machine by default. The mempress CLI writes all session data to a local SQLite database at ~/.local/state/mempress/. No personal or session data is transmitted to MemDev servers without your explicit opt-in.

The personal data we hold relates only to:

  • Email addresses on our early access waitlist (with your consent)
  • Contact messages sent to us
  • Anonymised analytics data (if you accepted analytics cookies)

Your Rights Under GDPR

Right to Access

You have the right to request a copy of the personal data we hold about you. We will respond within one month.

Right to Rectification

You have the right to request correction of inaccurate personal data we hold about you.

Right to Erasure ("Right to be Forgotten")

You have the right to request deletion of your personal data. For waitlist signups, you can unsubscribe at any time via the link in any email we send, or by contacting us directly. For local session data, use mempress purge.

Right to Restrict Processing

You have the right to request that we restrict processing of your personal data in certain circumstances.

Right to Data Portability

You have the right to receive your personal data in a structured, machine-readable format. Contact us and we will provide an export.

Right to Object

You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.

Legal Basis for Processing

  • Consent — Waitlist signup and analytics cookies. You may withdraw consent at any time.
  • Contract — Processing necessary to provide paid features you have subscribed to.
  • Legitimate interests — Security monitoring of our infrastructure and fraud prevention.

Data Retention

  • Waitlist emails — Retained until you unsubscribe or request deletion.
  • Contact messages — Retained for up to 12 months.
  • Analytics data — Anonymised and aggregated; not linked to individuals.
  • Local session data — Retained on your machine until you delete it.

Data Transfers

MemDev is hosted on Cloudflare's global network. Where data is transferred outside the UK/EEA, appropriate safeguards including Standard Contractual Clauses are in place.

Data Breach Notification

In the event of a data breach likely to result in a high risk to your rights and freedoms, we will notify affected individuals without undue delay and in accordance with our regulatory obligations.

How to Exercise Your Rights

Email us at hello@memdev.app with the subject line "GDPR Request". We will respond within one month of receiving your request.

Complaints

If you believe we have not complied with your data protection rights, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) in the UK, or your local supervisory authority within the EU.

Contact

Data matters: hello@memdev.app