What we can and cannot read
Your raw thoughts stay completely private. But we do see the patterns and summaries your entries create. Here is exactly how that works.
The three tiers of your data
Think of it like a doctor who sees your vital signs but not your diary.
Here is the honest truth: We cannot read your journal vault entries or encrypted check-in notes. But AI-generated summaries and your mood, energy, and stress scores are accessible server-side to power features like your daily narrative and pattern detection. Your raw words are yours alone. The AI-generated insights help us make the experience better for you.
Fully Private (We Cannot Read This)
Your raw journal vault entries and encrypted check-in notes are encrypted on your device before they ever reach our servers. We store them, but we cannot decrypt them. Only you hold the keys.
- Journal vault entries and daily reflections
- Encrypted check-in notes
- Photos (when photo encryption is enabled)
- Voice transcripts (processed with zero-retention)
AI-Generated Content & Metrics (Accessible Server-Side)
AI-generated summaries, narratives, and structured metrics are stored server-side to power features you use daily. This content is derived from your entries but kept separate from your raw words. It enables your daily narrative, pattern detection, insights, and more.
- AI-generated check-in summaries
- Weekly and monthly recap narratives
- Mood, energy, and stress scores
- Tags, focus areas, and detected themes
- Pattern insights and habit data
- Journey milestones
Account Data (Required for the App)
Basic information we need to run the service. This is standard stuff that lets you log in, sync your devices, and manage your subscription.
- Email address
- Profile information
- App usage and preferences
- Subscription status
What actually exists in our database
A simplified look at our data tables and which tier they belong to.
entries
Your journal vault entries
Vault content is end-to-end encrypted. We see only scrambled data.
conversations
Your AI chat messages
Fully encrypted. We cannot read any messages.
photos
Your uploaded photos
Photos are encrypted before upload.
insights
AI summaries, patterns, and trends
AI-generated content accessible server-side. Powers narratives, insights, and patterns.
users
Your account
Basic account info for login and billing.
Note: This is a simplified view. Additional system tables exist for authentication and sync, but they follow the same privacy principles.
Why do we see the pattern data?
Good question. We could encrypt everything. But then we could not improve your experience or notice when something matters.
When the AI notices you have mentioned feeling anxious three weeks in a row, that pattern helps us surface better prompts and resources. When we see gratitude appearing more often in your reflections, we know what is working.
We never see the specific words you wrote. We see: "user showed signs of stress this week" or "gratitude theme detected." Patterns, not private thoughts.
If this model does not work for you, we understand. But we believe this balance gives you both privacy and a better experience.
You still own everything
Export your data anytime. Delete everything with a single request. Your data, your call.
Export anytime
Download all your data in JSON format with one click
Delete within 30 days
Request deletion and we remove everything
No shadow copies
When deleted, your data is gone from our systems
No surprises
We tell you exactly what we can see before you sign up
Your data lives here
Encrypted on your device, synced to our servers, controlled by you.