Privacy is not a feature. It's the architecture.

Agent Magic is the first AI platform built on zero-knowledge principles. Your data is encrypted, your conversations are private, and your AI runs on your terms.

Zero Knowledge

Every credential is encrypted in your browser with AES-256-GCM (PBKDF2-SHA256, 600,000 iterations per OWASP 2024) before reaching our servers. We store only ciphertext. We hold no keys. Per-secret isolation via AES-KW key wrapping. WebAuthn PRF for biometric unlock.

Encryption Everywhere

• Sessions: AES-256-GCM with IndexedDB-stored key
• Vault: PBKDF2-600K + AES-KW + AES-256-GCM (zero-knowledge)
• Messages: Signal Protocol + MLS RFC 9420 + ML-KEM-768 (post-quantum)
• Voice: AES-256-GCM, device-local only, 90-day auto-prune
• Files: Ephemeral per-file encryption keys
• Transit: TLS 1.3 + HSTS preloading

App Permissions

33 permission scopes across 20 subsystems. 4 tiers: Always (platform basics), Install Time (tasks, calendar), Elevated (messaging, contacts), Per-Use (desktop, browser — confirmed every time). Full audit trail of every access.

Your Infrastructure

Dedicated compute per customer. Bring your own model (Anthropic, OpenAI, Google, NVIDIA). EU data residency (Germany). Containerless mode: 130+ tools work without any server. No vendor lock-in.

Voice Privacy

Voice transcripts are encrypted with AES-256-GCM and stored exclusively in your browser's IndexedDB. Zero network transmission. Server receives only duration and word count — never content.

Data Ownership

Full JSON export (GDPR Article 20). Permanent deletion on demand (GDPR Article 17). Import from ChatGPT, Claude, Gemini, Grok. No vendor lock-in.

Content Safety

Platform constitution prevents harm without reading your content. Pattern matching under 2ms. No content logging. No AI training on your data. No data selling. Business model: subscriptions, not data.