Midlight

Privacy

What we collect, what we don't.

Effective 2026-05-19 · invite-only beta. This is the operational policy for the v1 beta; we'll publish a fuller legal version before open signup.

What stays in your workspace

Your files, your chats, and your memory. They're stored encrypted at rest, scoped per-user, and never used to train any model. We don't index your content for advertising or share it with third parties.

What we collect

  • Account. Email, sign-in method (Google or magic link), and timestamps. Required to keep your account working.
  • Operational telemetry. Error reports, request latency, agent-action counts, session duration. Aggregate, scrubbed of content. Required to keep the service running.
  • Billing. Only when paid plans ship — Stripe handles card data; we never see card numbers.

What we don't collect

  • Chat content, file content, or memory content for analytics.
  • Cross-site tracking pixels or third-party advertising tags.
  • Your provider API keys in plaintext at rest.
  • Anything we don't need to run the service.

Where your data goes during inference

When the agent makes a model call, content from your workspace flows to your configured providers (Anthropic, OpenAI, etc.) as part of the prompt. That's how inference works. Their privacy policies apply to that leg of the trip. We do not duplicate, retain, or relay your prompts beyond what's required to execute the call.

Your controls

  • Export. Download your workspace as a folder of files at any time, including the full version history.
  • Delete. Email us and we delete your account, your workspaces, and your encrypted keys within 30 days. Periodic backups age out within 90.
  • Inspect. Memory pulls and tool calls are logged per-session and visible to you. You can see what the agent read.

Subprocessors

  • DigitalOcean — hosting (USA).
  • Neon — managed Postgres for canonical state.
  • Cloudflare R2 — object storage for file blobs.
  • Anthropic / OpenAI — inference, only when you direct.
  • Resend — transactional email (sign-in links).
  • Stripe — billing, when paid plans ship.

Children

Midlight isn't for children. We don't knowingly accept accounts from anyone under 16. If you believe a child has signed up, email us.

Changes

We'll update this page as the product changes. Material changes get a plain-English email to active users. The effective date at the top always reflects the current version.

Privacy questions: [email protected].

This page is the operational privacy practice for the v1 invite beta. A formal privacy policy with regional-law language (CCPA, GDPR, etc.) will ship before open signup. If you have specific compliance needs in the meantime, email us and we'll work through them with you.