Security Best Practices

<h2>What Not to Store</h2> <p>Never store these in your memories:</p> <ul> <li>API keys and secrets</li> <li>Passwords and credentials</li> <li>Personal identifying information (PII)</li> <li>Sensitive business data</li> <li>Customer data</li> </ul> <h2>Safe Alternatives</h2> <p>Instead of storing sensitive data directly:</p> <pre><code>❌ "Our API key is sk-abc123..." ✅ "API keys are stored in environment variables following our secrets management policy"</code></pre> <h2>Access Control</h2> <p>Regularly audit who has access to your memories:</p> <ol> <li>Review team member permissions quarterly</li> <li>Remove access for departed team members immediately</li> <li>Use the principle of least privilege</li> </ol> <h2>Encryption</h2> <p>UnifiedMemory.ai encrypts all data at rest and in transit. For additional security:</p> <ul> <li>Enable two-factor authentication</li> <li>Use SSO if available for your plan</li> <li>Regularly rotate API tokens</li> </ul>