Skip to content

Everything a security review needs.

The artefacts reviewers ask for, in one place. For enterprise pilots we walk your security team through each of them.

Data flow

What is captured, where it is processed, and the short list of what crosses the network.

Encryption

SQLCipher whole-database encryption, AES-256-CBC with HMAC-SHA512, keyed from the macOS keychain.

Sub-processors

The complete list is below. None of them holds captured content because it stays on the device.

Identity model

Magic link or SSO, one active device per user, and automatic sign-out on a new device.

Capture controls

Pause, ignore lists, exclusion categories, and built-in rules for sensitive surfaces.

Operational health

Signed releases, a documented update channel, and deletion that ends on your own disk.

Sub-processors, the whole list

Account plumbing and marketing measurement, never captured content.

ServiceWhat it holds
NeonAccount records and entitlements in managed Postgres
StripeBilling and payment details, held by Stripe, not by us
VercelWebsite and account hosting, cookieless analytics, and speed insights
MailjetTransactional email, including magic links and account messages
RedditOptional conversion measurement, consent-gated where required

Analytics and cookies, per surface

Three surfaces, three postures. The desktop app sends no analytics at all.

Desktop app: No telemetry

No analytics beacons leave the app. The account service receives only sign-in, billing, device registration, and aggregate licence state.

Marketing site: Cookieless analytics

Vercel Web Analytics and Speed Insights use no cookies or cross-site identifiers. Conversion events never include form values.

Marketing measurement: Consent-gated Reddit Pixel

It runs only with the consent required for the visitor's region, can be disabled at any time, and honours Global Privacy Control.

A pilot shaped for procurement.

Enterprise evaluations run as a 3-month paid pilot for up to 25 users, with SSO, a dedicated account manager, and a security walkthrough at the start rather than the end.

Enterprise pilot
Length
3 months, paid
Scope
Up to 25 users
Identity
SSO, Google or Microsoft Entra ID
Review
Security walkthrough included

Bring your hardest reviewer.

Enterprise enquiryDownload the one-pager (PDF)Read the security overview