Privacy Policy
The short version
- Your notes never leave your device. We run no server that stores, reads, or processes note content. The AI features run on your hardware.
- The app sends no telemetry. No analytics, no crash uploads, no usage events. An automated test suite fails our build if a telemetry endpoint appears.
- Your account is license plumbing only. The license server stores: your email, license purchases, redemption codes, hashed device fingerprints with self-chosen labels and last-seen timestamps, and an audit trail of license events. That's the complete list.
- This website sets no cookies and runs no analytics. Fonts are self-hosted; no third-party requests are made.
What the license server processes, and why
- Email — identifies your account; used for magic-link sign-in, redemption codes, and receipts. Never sold, never shared for marketing.
- Hashed device fingerprint — enforces device slots and prevents trial resets. The hash can't be reversed into your hardware details.
- Purchase records — from our merchant of record (Lemon Squeezy) or the app stores when you link a store purchase; needed to compute your upgrade credit.
Your rights
From your account page you can export everything the license server knows about you, and delete your account (with a grace period, then permanent erasure and an audit log entry). Or just email [email protected].
Cloud features you can opt into
If you enable a bring-your-own-key cloud model or web search in the app, your prompts/queries go to that provider under your key and their policy — the app shows a consent screen naming the endpoint before the first request and counts every request in the Network Audit. Off by default; nothing else in the app talks to the network.
This website
This site is static files. It sets no cookies, runs no analytics or tracking scripts, loads nothing from third-party servers, and sends no beacons. The account page talks to our license API only after you sign in, for the data it displays.
Contact
Privacy questions: [email protected].