View a markdown version of this page

Security, privacy, and architecture - Amazon Quick
How data is handledData storageFolder permissionsSystem tool permissionsConnection securityPrivacy controlsClearing all data

Security, privacy, and architecture

The Amazon Quick desktop application is designed to keep your data private while providing full access to AI capabilities. The following sections describe how Amazon Quick on desktop handles security, privacy, and data storage.

Important

Your data is never used for AI model training. AWS does not use your conversations, files, or personal context to train or improve AI models.

How data is handled

The Amazon Quick desktop application processes your requests using AI models through API Gateway. The network calls Quick makes are to AI models and to your connected services (such as Slack, Outlook, or Gmail). Quick requires the following to be stored on your machine for the application to operate:

  • Application configuration – Settings, preferences, and connection state needed to run the desktop application.

  • Cached content – Temporary data for performance, including file indexes for your granted local folders.

  • Credentials – Authentication tokens for your connected third-party services.

Data storage

Application data is stored in the ~/.quickwork/ directory on macOS or %USERPROFILE%\.quickwork\ on Windows.

Folder permissions

Amazon Quick on desktop uses OS-level sandboxing to control file access. Quick can only access folders that you explicitly grant permission to, and you can revoke access at any time. Each folder supports independent controls for keyword search indexing, semantic search indexing, and knowledge graph extraction. You can also set granular per-operation permissions for read and write operations.

To manage folder access and permissions, see My Computer.

System tool permissions

Amazon Quick on desktop includes system tools that provide core capabilities. Each tool can be individually toggled on or off and supports a three-tier permission model (Full Access, Read Only, or Ask Each Time) with granular per-operation controls. For a complete list of system tools and their permissions, see System tools.

Connection security

Amazon Quick on desktop uses industry-standard security practices for third-party service connections.

  • OAuth 2.0 – Services such as Slack, Google, and Microsoft use OAuth 2.0 for authentication. Quick redirects you to the service's sign-in page, and the service returns an authorization token. Quick never sees or stores your third-party passwords.

  • Independent connections – Each connected service is managed independently. You can disconnect and reconnect any service at any time from Settings > Capabilities > Connectors without affecting other connections.

  • Minimal permissions – Quick requests only the permissions needed to provide its features for each connected service.

Privacy controls

Amazon Quick on desktop provides privacy controls that let you manage whether Quick learns from your conversations, searches your conversation history, and extracts entities from connected services. You can also view, edit, and delete individual memories. To configure privacy settings, see My Context.

Clearing all data

If you need to completely reset Amazon Quick on desktop, you can use the Clear all data option in Settings > Customization > Danger zone. This action is irreversible and removes all conversations, knowledge graph data, saved credentials, and user preferences. For more information, see Danger zone.