NorthKeep

Your AI memory belongs to you.

An encrypted memory vault that lives on your Mac. Set it up once, and your context, preferences, and projects follow you across the AI apps you use — instead of being locked inside any one of them.

Download for Mac View source

Free and open source · Apple Silicon · signed & notarized · nothing leaves your machine

Two ways to use it

Both start from the same encrypted vault on your machine. You choose how much reaches the cloud — and NorthKeep is honest about the difference.

Connect

Your memory, in the apps you already pay for

One click wires NorthKeep into Claude Desktop or Claude Code. Your memory becomes portable across them, and you decide — per app — exactly what it may read.

Honest boundary: Connect gives you ownership and portability, not a firewall. It can't redact what you type into someone else's app.

Chat

Talk through NorthKeep when privacy has to be absolute

Chat runs the privacy for you: it masks sensitive data before your message leaves the machine, calls the model, and restores the details locally in the reply.

The real firewall — against a local model (nothing leaves your network) or a cloud model with your own key.

What you get

Owned & portable

One encrypted file you can copy, back up, and move. Your memory lives in none of the AI apps — so switching costs nothing.

On-device redaction

Secrets and names are masked before anything leaves your machine, with an audit trail proving what was masked.

Per-app scopes

Grant one app your work memory only, another nothing sensitive. Enforced at the vault, not on trust.

Bring your history

Import your ChatGPT or Claude export — extraction runs entirely on your machine, and you review every memory before it's kept.

Any model

Local models via Ollama, or any provider with your own key. A concierge routes each question to the cheapest capable model, cost shown up front.

Encrypted sync

Move your vault between machines. The server only ever holds ciphertext it can't decrypt — never a key, never plaintext.

What it doesn't do — because saying so is the point

  • It can't scrub what you type into someone else's app. Connect is portability, not a firewall — use Chat for that.
  • Redaction masks identifiers and names well, but can't make free text anonymous. "The lieutenant in Bourne whose partner runs compliance" survives every filter. We never claim otherwise.
  • No recovery. Lose your passphrase or device secret and the vault is gone — there's no back door, which is the whole point. Back up your secret.
  • Apple Silicon Macs for now. Other platforms run from source.

Pricing

Everything that runs on your machine is free. You only pay for the one thing that runs on ours.

Free

$0
  • The full app, on your machine
  • Connect to your AI apps
  • Chat with local or your-own-key models
  • Redaction, import, scopes, audit
  • Self-host sync yourself
Download

Sync

$10 / month
  • Everything in Free
  • Encrypted sync across your devices
  • Server holds ciphertext only
  • Card handled by Stripe, never us
  • Cancel anytime
Get started

Teams & business

Let's talk
  • Shared scopes & admin
  • Compliance & audit exports
  • Commercial license (no AGPL terms)
  • Priority support
  • Self-host support
Contact us

Questions

Do you ever see my memories?

No. Your vault is encrypted on your device, and we never receive your key. If you use hosted sync, our server stores only ciphertext it cannot decrypt plus a version number. There's no telemetry and no analytics in the app.

How is this different from ChatGPT or Claude's built-in memory?

Their memory lives on their servers and stays in their app. NorthKeep's memory lives on your machine and plugs into whichever apps you use — so it's portable, owned by you, and you set what each app can read.

Does Connect make my chats private?

No — and we won't pretend it does. When you type into another company's app, that company sees what you type. Connect gives you portable, owned memory with per-app scopes. For an actual redaction firewall on your messages, use Chat.

What happens if I lose my passphrase?

The vault is unrecoverable. There's no back door — which is exactly why no one else can get in either. Back up your device.secret file and keep your passphrase safe.

Is it really open source?

Yes — AGPL-3.0. You can read the code, run it, and self-host the sync server for free. A commercial license is available for businesses that don't want the AGPL's obligations.