Sovereign AI Memory · Hardware + Software

Your memory lives on your hardware — not in someone's cloud.

Priver AI is a personal AI companion device built around a hardware-rooted memory vault. Its sensors observe your day, distill it into a private event-graph that never leaves a secure enclave, and answer your questions on-device first — reaching the cloud only when you allow it, and only with what you authorize.

Explore the device How the stack works
Priver AI device connected to computer, phone, smart glasses, earbuds, and smartwatch
One device · one memory · every screen you carry
Hardware
The Vault Device
Secure enclave, sensors, privacy boundary, federation hub, physical erase control.
Software
Modality Memory
Five capture modalities, four-axis tagging, tier-ordered local-first answers across all your devices.
Software
Context Graph
Cross-app activity layered into an editable graph you govern before any AI sees it.
WHAT YOU GET

Ask any AI. It already knows.

Turn to ChatGPT, Claude, or any assistant and pick up mid-thought — your memory of what you saw, heard, read, wrote, and did travels with you. No re-explaining, no copy-paste, no starting over.

SAW

“What do you think of the car I photographed last night?”

HEARD

“Summarize what was actually said in this morning's meeting.”

READ

“Find that article I read about sleep yesterday.”

WROTE

“Does the email I sent Sara come across as too harsh?”

DID

“Is the thing I bought on Amazon two days ago worth keeping?”

MADE

“How could I improve the presentation I made last weekend?”

The same context works across ChatGPT, Claude, or any AI assistant — it's portable, not locked to one provider.

01

The Personal AI Companion Device

A device worn or carried on the body — pendant, pin, clip, wristband, or pocket enclosure. Every function below is rooted in silicon, not policy: the protections are enforced by the hardware itself, so they hold even if a vendor, a network, or a contract does not.

Hardware-Rooted Memory Vault

A trusted execution environment stores your persistent event-graph memory and a cryptographic key pair generated inside the enclave — structurally incapable of being exported. Your memory is reachable only through an attestation-verified interface.

Hardware-Enforced Privacy Boundary

A sensor-side extraction circuit turns raw camera, microphone, and biometric data into normalized events on-device — then a unidirectional bus, frame-buffer clear, and write-only registers prevent the raw data from ever crossing back out.

Attestation Verification Gate

External AI systems can't just read your memory. Each request must present an identity attestation, task context, requested scope, and a passport — verified against an on-device registry, with session, purpose, and derivative-use limits, plus revocation.

Federation Hub

Coordinates one coherent memory across your paired devices — glasses, watch, earbuds, phone, desktop — using federated update signals that omit raw sensor data, scaled by per-device trust scores and filtered by a jurisdiction map.

02

Modality-Typed Memory Across Every Device

The software layer that turns the vault into a coherent memory spanning all the devices you carry — and an answer engine that consults you before it consults the cloud.

The same memory, captured surface by surface — each device contributing the modalities it is built for, and your cross-application life folded in alongside.

Computer memory graph — files, docs & web
Computerfiles, docs & web
Phone memory graph — apps, photos & messages
Phoneapps, photos & messages
Smart Glasses memory graph — what you see & capture
Smart Glasseswhat you see & capture
Smart Earbuds memory graph — what you hear & say
Smart Earbudswhat you hear & say
Phone + Computer memory graph — two devices, merged
Phone + Computertwo devices, merged
Every device memory graph — one coherent memory
Every deviceone coherent memory

Five Capture Modalities

Every moment is classified by how it was acquired — visual (cameras), auditory (microphones), textual-reception (what you read), textual-emission (what you write or dictate), and behavioral-activity (where you go, what you use, what you do).

Four-Axis Attribute Tags

Each memory item carries when (temporal), where (spatial), from what source (source-reference), and which device captured it (hardware-attribution) — so you can retrieve along any axis or any combination of them.

Multi-Device Coordination

Paired devices stay consistent through configurable topologies — a primary coordination device, full replication, or modality-sharded distribution — with cryptographic device-pairing, synchronized audit logs, and retrieval-forwarding between devices.

02 · b

Tier-Ordered Query Resolution

Questions are answered from the closest, most private source first. The cloud is the last resort — not the default.

TIER 1 — LOCAL

Your Personal Memory

The query runs against your own on-device memory. If a confident answer exists, it is returned with attribute-context — when, where, and through which device it was learned. Nothing leaves your hardware.

works fully offline
TIER 2 — FEDERATED

Shared Collective Memory

Only if Tier 1 falls short, and only where you've consented, the query escalates to a federation you belong to — household, team, or family — returning answers with per-contributor attribution.

consent-scoped
TIER 3 — CLOUD

External AI Provider

As a final step, the query may reach a cloud AI — but only the portions your cloud-transmission policy authorizes. Every resolution carries a lineage record showing exactly which tier answered and what was sent.

policy-gated
02 · c

Just ask. Or tell it to forget.

Your memory isn't a wall of toggles — you talk to it. Ask what you did last Tuesday, or tell it in plain language to delete or limit anything. Each request is parsed into structured edits and propagated across every paired device.

03

The Context Graph You Control

The software layer that aggregates your cross-application activity into a single, editable, user-owned event-graph — and negotiates, on your terms, what any AI service is allowed to see.

Cross-Application Aggregation

Observes activity across AI chats, search, browsers, messaging, documents, calendars, files, and media — and ingests existing history like email, browser logs, and chat archives — into one typed graph from day one.

Independently Controllable Layers

Your graph is organized into layers along application, time, and location dimensions. Toggle any layer on or off; only enabled layers can ever contribute context — no all-or-nothing privacy bargains.

Scope Negotiation

Before any context is sent, the AI service must cryptographically accept your terms — maximum retention duration, permitted operations, and what derivative data it may create. No acceptance, no transmission.

Trust-Graduated Abstraction

Less-trusted services receive less specificity. Identifying entities are replaced with category labels — from full disclosure down to partial, heavy, or summary-only abstraction — based on each service's trust score.

SYSTEM / 04

How the Three Fit Together

One physical root of trust, two software layers running on top of it. The hardware makes the promises enforceable; the software makes them useful.

CONTEXT
Aggregation & Governed Sharing
Pulls your cross-app life into a layered, editable graph and negotiates exactly what — and how abstracted — any external AI is allowed to receive.
MEMORY
Modality Memory & Local-First Answers
Organizes everything by modality and four-axis tags across all your devices, and resolves questions locally before the federation, before the cloud.
HARDWARE
Hardware-Rooted Memory Vault & Federation Hub
The secure enclave, privacy boundary, attestation gate, federation hub, audit log, and physical erase control that hold the keys and enforce every rule above in silicon.
PRINCIPLES / 05

Sovereignty by Structure, Not by Promise

The difference isn't a privacy policy you have to trust. It's an architecture where the protections are built into the hardware and the math.

Keys you alone hold

The cryptographic key pair is generated inside the enclave and can never be exported. You are the locus of control — not a vendor, not a cloud operator.

Raw data never escapes

Camera, mic, and biometric streams are reduced to events behind a hardware privacy boundary and discarded. What's shared is abstracted; the originals stay home.

Cloud is opt-in, not default

Answers come from your own memory first. The system runs offline, and reaches external AI only under a policy you set, sending only what you authorize.

Erasure that actually propagates

A physical control deletes memory, blocks its return with tombstones, corrects every peer and AI that learned from it, and proves compliance in a signed log.

DEPLOYMENTS / 06

One Architecture, Many Lives

From a single person with a drawer full of devices to consent-scoped sharing between people who trust each other.

Individual

One person, many devices

Glasses, watch, earbuds, phone, and desktop share a single coherent memory — and answer from it without ever calling the cloud.

Household

A shared residence

Cohabitants federate residence-relevant memory with symmetric consent — "what was the weekend plan?" resolves across both people's graphs.

Professional

A defined engagement

Teams share engagement memory under asymmetric rules — pricing stays lead-only — with lifecycle handlers and exportable compliance records.

Family

Across generations

Family members federate family-relevant memory, with healthcare and decision categories scoped to the people they actually concern.

Back to top Re-read the device