knowmindknowmind
DokumentationQuickstartAnbindungReferenzFehlerbehebung
DEEN
knowmindknowmind
DocumentationQuickstartIntegrationsReferenceTroubleshooting
DEEN

Concept

Privacy and hosting

knowmind is EU-centric by design. Hosting in Germany, full customer data sovereignty, encryption at multiple layers, a documented subprocessor list and a complete GDPR export are foundational, not afterthoughts.

Where your data lives

  • Hosting at Hetzner Online GmbH, sites in Nuremberg and Nürnberg
  • Your contractual counterparty is Schübeler Consulting, Beverungen, Germany
  • No subprocessors outside the EU for data storage — content, vector embeddings and Knowledge Graph nodes stay in the EU
  • Brevo (formerly Sendinblue) as the mail sender for sign-in links and webhook notifications, also EU-based with EU servers

Encryption

  • TLS 1.3 for all external connections (Let's Encrypt)
  • Bolt-over-TLS for database connections from the browser (NeoDash)
  • AES-256-GCM for BYOK provider keys, KEK per workspace derived via HKDF-SHA256 — the master key is not stored in the database or in backups
  • scrypt with salt for API tokens — the clear text never leaves our side as a persisted value
  • Disk encryption on Hetzner volumes (at rest)

Who can see content

At the tenant level, content is strictly isolated. The application back-end's PostgreSQL role holds NOBYPASSRLS — meaning we cannot defeat this isolation either. Every database access runs inside a transaction with the tenant filter. The Knowledge Graph (Neo4j) carries a tenant key on every node; Cypher queries pass through a wrapper that injects the filter mandatorily.

Schübeler Consulting staff have system-level access for platform operations, but no access to your workspace's clear-text content unless they hold a token for that workspace. In the case of a support ticket where you explicitly ask for inspection, the access is logged and recorded on completion.

Data subject rights (GDPR)

  • Access and portability (Art. 15, 20): in the dashboard under Plan there is a JSON export that downloads all memories, relations, documents and audit entries of your workspace.
  • Rectification (Art. 16): memories are edited through the dashboard or API. For larger corrections we recommend knowmind.update_fact — the previous statement remains for audit purposes, the new one becomes current.
  • Erasure (Art. 17): request by email to info@schuebeler-consulting.de, fulfilled within 30 days. Backups are cleared within at most 90 days.
  • Restriction (Art. 18) and objection (Art. 21): on request. We mark the affected content accordingly in processing.

Data Processing Agreement (Art. 28)

Available on Business, Business API and Enterprise. Request informally by email. The subprocessor list is part of the agreement and currently lists Hetzner Online GmbH (hosting) and Brevo (mail).

Audit log

Every security-relevant action is logged: token creation and revocation, BYOK key creation and deletion, plan changes, memory mutations. Retention depends on the plan (30 days to 5 years — see Plan matrix). Visible in the dashboard under Audit log or Security log; CSV export is available.

Related