Privacy & Data Practices

Last updated: March 2026

The Short Version

Enzyme runs locally on your machine. Your vault files stay on your device. When you initialize and generate catalysts, note excerpts are sent to your AI provider using your own API key — not ours.

We don't store your notes, your catalysts, or your embeddings. We don't see your data. We don't sell it, we don't train on it, and we don't have access to it.

How It Works

Enzyme uses AI to understand your notes. That requires sending excerpts to an AI provider — but the connection is directly between your machine and the provider you choose. Enzyme's servers are not in the middle.

When you initialize

You run enzyme init. AI analyzes your vault structure to understand what patterns exist and how to organize catalysts. Excerpts of your notes are sent directly to your AI provider using your API key.

When you generate catalysts

Enzyme distills your notes into catalysts using AI. Your note content goes to your AI provider for processing. Catalysts and embeddings are stored locally on your machine.

When you use the Claude Code plugin

Enzyme ships as a Claude Code plugin. When Claude invokes the /enzyme skill, it calls the Enzyme CLI on your machine to search your local catalysts. Nothing leaves your device at this step.

What We Collect

Anonymous Analytics

  • App version, OS type
  • Feature usage patterns (not content)
  • Error and crash reports (no personal data)

What never touches our servers

  • Your vault files
  • Your catalysts and embeddings
  • Your API keys
  • Any content from your notes

AI Processing

Your API key, your provider

Enzyme connects directly to AI providers using your credentials. We don't proxy, intercept, or store these calls. Your relationship with your AI provider is between you and them.

OPENAI_API_KEY=<your-key> enzyme init

Works with OpenAI or any OpenAI-compatible endpoint via OPENAI_API_KEY and optional OPENAI_BASE_URL.

Local Embeddings

Semantic search uses local models (ONNX/CoreML) that run entirely on your device. Similarity search works without any external API calls.

Your Rights & Controls

Everything is local

Your catalysts, embeddings, and vault data live on your machine. Delete them anytime by removing the ~/.enzyme directory. Your vault is unaffected.

Switch providers anytime

You're not locked into any AI provider. Change your API key and Enzyme uses the new provider. Your local data stays the same.

No account required

Enzyme works without creating an account. There's nothing to sign up for and nothing to cancel.

GDPR/CCPA

Since we don't collect personal data beyond anonymous analytics, there's little to request. But if you have questions, email support@enzyme.garden.

Contact

Questions about our privacy practices? Reach us at support@enzyme.garden.