Docs

Data Principles

Toto handles the shared state between people and agents. That state is yours. These are the rules we follow with it.

We will never sell your data

Not anonymized. Not aggregated. Not "insights derived from." Never.

Your tasks, your world model, your agent interactions — none of it becomes a product for someone else. Toto makes money by being useful to you, not by monetizing what you put into it.

We want as little as possible

The best data policy is not needing the data in the first place.

Toto collects what it needs to function — your tasks, your sync state, your preferences — and nothing more. No tracking pixels, no behavioral analytics, no third-party data brokers. We don't want to know what you're working on. We want to help you work on it.

We will keep it safe

Security is not a feature we ship once. It is a posture we maintain.

Every endpoint has a threat model. Every data flow is authenticated. Device tokens are SHA-256 hashed. API keys are scoped with explicit permissions. Sessions are signed. We run pip-audit in CI. Sentry catches what we miss.

If we hold your data, we protect it like it's ours — because the moment you trust us with it, it is.

End-to-end encryption

Your data should be unreadable to anyone who isn't you or your agents.

We are building toward a model where task content is encrypted client-side before it ever reaches our servers. The server sees ciphertext. It can sync it, store it, deliver it — but not read it. This is the goal and we will get there.

Local environment and deployment

You should be able to run Toto entirely on your own hardware.

Local deployment is on the roadmap — your own database, your own server, your own network. No phone-home, no license server, no forced cloud dependency. Today Toto runs as a hosted service. In the future, a self-hosted option will exist for full data sovereignty.

Your infrastructure, your rules.

Bring your own tokens and agents

Toto does not process a single AI token. Zero token costs. Zero vendor lock-in.

Bring your own agent — Claude Code, Codex, Devin, a custom script, whatever does the work. Bring your own API keys. Toto is the interaction layer, not the compute layer. We connect to your agents through open protocols like MCP. We never sit between you and your model provider.

Bring your own knowledge base

Your world model is yours. It lives where you put it.

Toto integrates with Obsidian vaults, git repositories, local files — wherever your knowledge already lives. We don't ask you to migrate into our system. We don't create a proprietary knowledge format. We connect to the world model you've already built and make it legible to both people and agents.

Semantic reconciliation reads your world. It doesn't own it.