Privacy Policy

1. Information We Collect

1.1 Data Stored Locally

The following data is stored locally on your device and is never transmitted to our servers unless you explicitly enable cloud sync:

• Your notes: All text, markdown content, and metadata
• Voice recordings: Audio files and transcriptions
• Embeddings: Vector representations of your notes for semantic search (computed on-device)
• Tags and metadata: Tags, timestamps, and organizational data
• Search indexes: Local search indexes for fast retrieval

1.2 Data Collected When You Create an Account

If you create an account to enable cloud sync or Pro features, we collect:

• Email address: For authentication and account recovery
• Password: Stored securely using industry-standard hashing (bcrypt)
• Account metadata: Account creation date, subscription status, preferences

1.3 Data Collected When You Enable Cloud Sync

If you opt-in to cloud sync, we store:

• Encrypted notes: Your notes are encrypted end-to-end before transmission. We store the encrypted blobs on our servers but cannot decrypt or read them.
• Sync metadata: Timestamps, device IDs, and sync status (not encrypted, but contains no note content)

1.4 Analytics and Usage Data

We collect minimal, anonymized usage data to improve the app:

• Error reports: Crash logs and error messages (sanitized to remove personal data)
• Feature usage: Which features are used (e.g., "voice recording started") but not the content
• Performance metrics: App performance data like load times

We do not use third-party analytics trackers like Google Analytics.

2. How We Use Your Information

We use the information we collect to:

• Provide the service: Store and sync your notes across devices (if enabled)
• Authenticate you: Verify your identity when you log in
• Process payments: Handle Pro subscriptions (via Polar.sh, which has its own privacy policy)
• Improve the app: Analyze anonymized usage patterns to fix bugs and build better features
• Communicate with you: Send important account updates, security alerts, or (rarely) product updates. You can opt out of non-essential emails.

3. How We Protect Your Data

3.1 Local-First Architecture

By default, all your data stays on your device. We have no access to your notes, recordings, or embeddings unless you explicitly enable cloud sync.

3.2 End-to-End Encryption for Cloud Sync

If you enable cloud sync:

• Your notes are encrypted on your device before being sent to our servers.
• We use AES-256 encryption with keys derived from your password.
• We cannot decrypt your notes. Even if our servers are compromised, your notes remain unreadable without your password.
• Only encrypted data is transmitted over the network (using TLS/HTTPS).

3.3 Security Measures

• Password hashing: We use bcrypt with a high work factor to hash passwords.
• TLS encryption: All network traffic uses HTTPS/TLS 1.3.
• Regular security audits: We periodically review our code and infrastructure for vulnerabilities.
• Minimal data retention: We only keep data necessary to provide the service.

4. Sharing Your Information

We do not sell, rent, or trade your personal information to third parties. Period.

We may share data only in these limited circumstances:

• Service providers: We use third-party services (e.g., cloud hosting, payment processing) that may process data on our behalf. These providers are contractually obligated to protect your data and cannot use it for their own purposes.
  • Hosting: Vercel (for web hosting), Supabase (for database)
  • Payments: Polar.sh (for payment processing)
  • Email: Resend (for transactional emails)
• Legal obligations: We may disclose data if required by law, subpoena, or to protect our legal rights. We will notify you unless prohibited by law.
• Business transfers: If Tentacle is acquired or merged, your data may be transferred to the new owner. We will notify you and ensure the same privacy protections apply.

5. Your AI API Keys (BYOK)

If you choose to bring your own API key (BYOK) for OpenAI or other AI services:

• Your API key is stored locally in your browser's secure storage (encrypted).
• We never transmit your API key to our servers.
• When you use AI features, requests are sent directly from your device to OpenAI's servers, not through us.
• We do not log, store, or have access to your API keys or the content of AI requests.

6. Data Retention and Deletion

6.1 Local Data

Local data remains on your device until you delete it. You can delete notes, clear the database, or uninstall the app at any time.

6.2 Cloud Data

If you use cloud sync:

• You can delete your account at any time from the app settings.
• When you delete your account, we permanently delete all your cloud-synced notes and account data within 30 days.
• Backups are retained for up to 30 days for disaster recovery, then permanently deleted.

6.3 Account Data

We retain account data (email, subscription info) as long as your account is active. After deletion, we may retain anonymized usage data for analytics.

7. Your Rights

You have the following rights regarding your data:

• Access: Request a copy of your data.
• Rectification: Correct inaccurate data.
• Deletion: Delete your account and all associated data.
• Portability: Export your notes in standard formats (Markdown, JSON).
• Objection: Opt out of non-essential communications.

To exercise these rights, email us at nicolas@polvera.com.br.

8. Children's Privacy

Tentacle is not intended for children under 13. We do not knowingly collect data from children. If we discover we have collected data from a child, we will delete it immediately.

9. International Data Transfers

Tentacle is operated from the United States. If you use Tentacle from outside the U.S., your data may be transferred to and processed in the U.S. We ensure appropriate safeguards (e.g., encryption, contractual protections) for international transfers.

10. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you via email or a prominent notice in the app. Continued use of Tentacle after changes constitutes acceptance of the updated policy.

11. Open Source and Auditing

Tentacle is open source. You can review our code on GitHub to verify our privacy claims. We welcome security researchers to audit our code and report vulnerabilities responsibly.

12. Contact Us

If you have questions about this Privacy Policy or how we handle your data, please contact us:

• Email: nicolas@polvera.com.br
• GitHub: Report an issue