Can I export everything Alma stores about me?

Yes. Settings → Data & Privacy gives you a one-click export of all memories, episodes, procedures, soul blocks and conversations in JSON, PDF, DOCX or XLSX. No quota, no waiting period.

Is Alma GDPR compliant?

Yes — by design, not as an afterthought. Right to access, right to portability, right to deletion and consent flows are all native, and we minimise PII in logs (8-char user hashes for query buckets).

How are my passwords stored?

PBKDF2-SHA512 with 100,000 iterations + per-user salt (format pbkdf2-512:salt:hash). Legacy formats auto-upgrade on next login. We never store plaintext.

Can I delete my account and everything in it?

Yes. One click in Settings deletes your account, every memory, every episode, every soul block and every file. No "cooling off" retention period beyond what the law requires.

Privacy-First AI Memory

2026-02-12 · Alma Team

Alma is GDPR compliant by design. Passwords are hashed with PBKDF2-SHA512 (100K iterations), BYOK keys are encrypted at rest with AES-256-GCM and API keys use HMAC-SHA256. Full export is available in JSON, PDF, DOCX and XLSX, and you can delete every byte of your account at any time.

Your AI memory is yours. GDPR compliant with full data export (JSON, PDF, DOCX, XLSX). Passwords hashed with PBKDF2-SHA512 (100K iterations). BYOK keys encrypted with AES-256-GCM. API keys use HMAC-SHA256. You can delete everything at any time.

Read the full article · Alma vs ChatGPT Memory · See plans

See plans