Last updated: June 3, 2026
This Privacy Policy describes how SwiftNote ("the app," "we," "our") handles your information. SwiftNote is a note-taking application for Android. We have designed the app to keep your notes private — your note content is encrypted on your device before it ever leaves it.
Please read this policy carefully. By using SwiftNote, you agree to the practices described here.
Summary (the short version)
- Your notes are encrypted on your device before being stored or synced. We cannot read them.
- We do not require you to create an account, give an email, or provide your name.
- We do not sell your data or share it with advertisers.
- AI-powered features are opt-in and only work if you add your own AI provider key.
- You can delete all your data at any time from within the app.
1. Information We Collect and How We Use It
1.1 Note content (encrypted)
When you create notes, checklists, and reminders, that content is stored:
- Locally on your device, in the app's private storage.
- Optionally in the cloud (Google Firebase Realtime Database) so you can back up and sync your notes across devices.
Before any note leaves your device, it is encrypted using AES-128-GCM authenticated encryption with a key derived from your device or your sync passphrase. The data stored in the cloud is ciphertext. We do not have, and cannot obtain, the keys needed to read your note content. To anyone inspecting the stored data — including us — your notes appear as unreadable encrypted text.
1.2 Device identifier
SwiftNote uses a device identifier (derived from your device's Android ID) as your anonymous account key. This identifier is how your encrypted notes are associated with you for backup and sync. It is not linked to your name, email, phone number, or any personal identity. We do not use it for tracking or advertising.
1.3 Sync passphrase
If you choose to sync notes across multiple devices, you may use a passphrase. This passphrase is used to locate and decrypt your synced notes. Choose a passphrase you can remember — because your notes are end-to-end encrypted, we cannot recover your notes if you lose your passphrase or device identifier.
1.4 Reminders
Reminder times and recurrence settings are stored locally on your device and (in encrypted form) in the cloud alongside your notes. Reminders are delivered as local notifications on your device.
1.5 Analytics (limited and anonymous)
SwiftNote uses Google Firebase Analytics to understand which features are used, so we can improve the app. Our analytics are deliberately minimal:
- We log when certain features are used (for example, tapping a detected phone number or link in a note).
- We log only the type of action (for example, "phone number tapped"), never the content of your notes. We do not send your note text, titles, phone numbers, links, or any note data to analytics.
1.6 Camera
SwiftNote requests camera access only for scanning QR codes used to transfer your sync identity between your own devices. The camera is not used for any other purpose. No photos or video are recorded, stored, or transmitted.
2. AI-Powered Features (Optional, Opt-In)
SwiftNote includes optional AI features that can detect reminders and suggest titles from your note text. These features are disabled by default and only work if you choose to enable them by adding your own API key from an AI provider (such as Google Gemini or Groq).
If you enable AI features:
- The text of the note you are editing is sent to your chosen AI provider (Google or Groq) to detect reminder intent and extract dates and times.
- This communication goes directly from your device to the AI provider using the API key you supplied. The text is processed under that provider's privacy policy, not ours.
- Your API key is stored only on your device, using Android's EncryptedSharedPreferences (hardware-backed encryption). Your key is never transmitted to us and we never have access to it.
If you do not enable AI features, reminder detection runs entirely on your device using Google's ML Kit on-device entity extraction and built-in pattern matching. In this mode, no note text is sent to any external AI service.
You can review the privacy practices of the AI providers here:
- Google Gemini / AI Studio: https://ai.google.dev/gemini-api/terms
- Groq: https://groq.com/privacy-policy/
You can disable AI features and remove your API key at any time in the app's AI Settings.
3. How Your Information Is Stored and Protected
| Data | Where stored | Protection |
|---|---|---|
| Note content & reminders | Your device + Firebase (cloud) | AES-128-GCM encryption applied on-device before upload |
| Device identifier | Your device + Firebase (as account key) | Anonymous; not linked to personal identity |
| AI provider API key | Your device only | Android EncryptedSharedPreferences (AES-256) |
| Analytics events | Google Firebase Analytics | Action type only; no note content |
Cloud storage and synchronization are provided by Google Firebase. Data transmitted to Firebase travels over encrypted connections (HTTPS/TLS). You can review Google Firebase's privacy and security information at https://firebase.google.com/support/privacy.
4. Data Sharing
We do not:
- Sell your personal information.
- Share your data with advertisers or data brokers.
- Share your note content with any third party (we cannot — it is encrypted and we do not hold the keys).
The only third parties that process data on our behalf or at your direction are:
- Google Firebase — provides cloud storage, synchronization, and anonymous analytics.
- Your chosen AI provider (Google or Groq) — only if you opt in to AI features and only the note text you are editing, sent directly from your device using your own API key.
5. Your Choices and Controls
- Use the app without cloud sync or AI. Core note-taking works on your device.
- Delete your data. You can delete individual notes or all notes from within the app. Deleting notes removes them from your device and from cloud storage.
- Remove AI access. Delete your API key in AI Settings at any time to stop all communication with AI providers.
- Revoke permissions. You can revoke camera and notification permissions in your device's system settings; related features will simply stop working.
6. Data Retention
Your notes remain stored until you delete them. When you delete a note, it is removed from your device and from cloud storage. If you uninstall the app without first deleting your notes, encrypted copies may remain in cloud storage; because they are encrypted and tied to your device identifier, they are not readable. You can delete this data by reinstalling the app and using the in-app delete options, or by contacting us at the address below.
7. Children's Privacy
SwiftNote is not directed to children under 13 (or the minimum age of digital consent in your country). We do not knowingly collect personal information from children. If you believe a child has provided information through the app, please contact us.
8. Permissions We Request and Why
| Permission | Purpose |
|---|---|
| Internet / Network state | Cloud backup and sync; optional AI features |
| Camera | Scanning QR codes to transfer sync identity between your own devices |
| Post notifications | Delivering your reminders |
| Schedule/use exact alarm | Delivering reminders at the precise time you set |
| Receive boot completed | Restoring your scheduled reminders after the device restarts |
| Vibrate / Wake lock | Reminder notifications |
| Ignore battery optimizations (optional) | Ensuring reminders are delivered reliably in the background |
9. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will revise the "Last updated" date at the top. Significant changes will be communicated through the app or the Play Store listing. Continued use of the app after changes take effect constitutes acceptance of the updated policy.
10. Contact Us
If you have questions about this Privacy Policy or your data, contact us at:
Email: ayushkumar2205@gmil.com
Developer: Amvar Developers
App: SwiftNote
This policy reflects SwiftNote's actual data practices: end-to-end encryption of note content, anonymous device-based identity, opt-in AI with user-supplied keys, and minimal anonymous analytics.