Privacy-First Architecture

Building products where user data stays on-device. Offline-first, local processing, minimal cloud dependency.

Pages

• privacy-as-architecture — Privacy as architectural decision, not a feature (from manifesto)
• manifest-summary — Core values: privacy is architecture = principle #2

Core Concepts

• MLX on-device inference (Apple Silicon)
• Supabase Auth + row-level security
• PostHog EU analytics (GDPR-compliant)
• On-device embeddings (multilingual-e5-small)
• Privacy-first as competitive moat

Open Questions

• How to sync without exposing data? (CRDTs vs E2EE)
• When is cloud processing acceptable?
• Legal requirements across jurisdictions (GDPR, CCPA, etc.)

Key Sources

• 1-methodology/posthog-analytics.md — PostHog EU setup
• 1-methodology/infra-prd.md — Infrastructure architecture
• 0-principles/manifest.md — Privacy-first principle