Privacy Policy — WispDay

1. The short version

You can use WispDay without creating an account. An account is only needed if you want backup and sync.

Your entries, photos, and other content are encrypted on your device. They are decrypted only on your device, only when you view them.

Our servers and databases store your synced data in encrypted form only. We do not hold the keys and cannot read your content. This is a zero-knowledge design for storage and sync.

We do not use third-party analytics, advertising, or tracking SDKs.

Cloud Intelligence is an optional feature that is on by default. If — and only if — you turn it on, certain entry text is sent (encrypted in transit) for processing, as described in Section 5. If you never enable it, your readable content never leaves your device.

Payments are handled entirely by Apple. We never see or process your payment details.

2. Using WispDay without an account

WispDay is fully usable without an account. If you use the app this way, your data stays on your device and is not transmitted to us. We do not require registration, and we do not collect personal information simply because you opened the app.

3. Accounts, backup, and sync

If you choose to create an account to enable backup and sync:

What we collect at sign-up: the information needed to create and secure your account (such as an email address). We use it only to operate your account, enable sync, and contact you about your account or the service if necessary.

How your synced content is handled: your entries, photos, and related content are encrypted on your device before they are sent to our servers. They remain encrypted at rest in our storage and databases. The encryption keys derive from and stay on your device. Our servers never receive your decryption keys and cannot read your synced content.

Where it is stored: synced data is stored on our own server infrastructure. Media files (such as photos) are stored using Amazon Web Services (AWS) in encrypted form. No third party that stores this data can read its contents.

Encryption: content is protected using AES encryption, with transmission secured over encrypted (TLS) connections.

Because of this design, your content is protected by keys that exist only on your device. We never hold, store, back up, or have access to your encryption keys, and we never will. As a result, if you lose access to your keys, your account credentials, or your device, and you do not have your own backup, we cannot recover, restore, reset, or decrypt your content — no one can, including us. This is a deliberate consequence of keeping your data private even from us: there is no readable copy and no key for us to recover from. You are solely responsible for safeguarding your keys, credentials, and any backups you choose to keep.

4. Optional account-linked details (Maximum Security)

WispDay offers a Maximum Security mode that binds your encryption key to your device biometrics (Face ID). Biometric data is handled entirely by Apple on your device through the system biometric APIs; WispDay never receives, sees, or stores your Face ID data. We only receive the success/failure result that the operating system provides.

5. Cloud Intelligence (optional, off by default)

Cloud Intelligence is an optional feature that helps organize what you write — for example, surfacing the people, places, and themes in your entries, or turning what you write into goals you can track.

This feature is on by default. It does nothing unless you choose to turn it on in Settings.

When you enable Cloud Intelligence and use a function that relies on it:

The relevant entry text is decrypted on your device and sent, over an encrypted (TLS) connection, to our server, which relays it to a third-party AI processing provider.

Before it is sent, the text is sanitized to remove identifying details such as phone numbers, email addresses, and links.

The request is processed under an anonymous identifier that is not linked to your account or identity. Only the entry text needed for the function is sent — not your goals, habits, account details, or other data.

The AI processing provider reads this text only to generate the result (such as a list of entities or a suggested goal) and returns it. The text is not stored by us for this purpose, and is processed and discarded.

This is the one case in which readable entry text leaves your device. It happens only because you enabled the feature, and only for the entries or actions you trigger.

You can disable Cloud Intelligence at any time in Settings. When it is off, no entry text is transmitted for processing, and your zero-knowledge protection applies to everything.

Other intelligent features — extracting text from photos and documents, and transcribing voice memos — are performed entirely on your device using Apple's built-in (on-device) APIs. That content is not sent to us or to any third party for these functions.

6. Weather

When the app attaches weather to an entry, it requests current conditions from a weather service based on your approximate location derived from your IP address. We do not request, collect, or share your precise GPS location for this feature,

7. Payments and subscriptions

WispDay is free to use, including all of its security features. Optional premium features are available through the "Wispday Pro" subscription.

All purchases and subscriptions are processed by Apple through in-app purchase.

We never receive, see, or store your payment card or billing details.

Subscription validation is handled through our server and Apple's systems; no third-party payment processor is involved.

Subscriptions auto-renew unless cancelled; you can manage or cancel them in your Apple Account settings. Apple's terms and privacy policy govern the payment itself.

8. What we do not do

We do not use third-party analytics, advertising networks, attribution, or tracking SDKs.

We do not sell, rent, or share your personal information with advertisers or data brokers.

We do not display ads.

We do not build advertising profiles about you.

Your entries are not shared publicly or with other users; WispDay has no social or public-sharing features.

9. Service providers

We use a limited number of infrastructure providers strictly to operate the service:

Cloud hosting and storage — to store your encrypted account data and (for media) encrypted files. These providers store data in encrypted form only and cannot read your content.

An AI processing provider — used only if you enable Cloud Intelligence, to process sanitized, unattributed entry text and return a result, as described in Section 5.

Apple — for app distribution, payments, and on-device system features (biometrics, on-device text/voice processing).

These providers act as processors for the limited purposes described and are not permitted to use your content for their own purposes.

10. Data retention and deletion

Content you keep only on your device remains under your control; deleting it in the app removes it from your device.

Synced content is retained in encrypted form while your account is active so it can sync across your devices.

You can delete your account, which removes your synced data from our systems. Because synced data is encrypted without our holding the keys, deletion removes the encrypted data we hold.

Cloud Intelligence requests are not retained for that feature after processing.

To request account deletion or exercise the rights below, contact contact@wispday.com.

11. Your rights

Depending on where you live, you may have rights over your personal information, including the right to access, correct, delete, or export it, and to object to or restrict certain processing. Because we operate on a zero-knowledge basis for your content, we are technically unable to access the content of your entries — but we can act on the limited account information we do hold (such as your account email) and can delete your account and associated stored data on request. To make a request, contact contact@wispday.com.

If you are in the European Economic Area, the UK, or a similar jurisdiction, the lawful bases we rely on are: performing our contract with you (operating your account and sync), your consent (for optional features such as Cloud Intelligence), and our legitimate interests in operating and securing the service.

12. Children

WispDay is a general-audience app and is not directed at children. We do not knowingly collect personal information from children in a manner requiring parental consent. If you believe a child has provided us with personal information, contact us and we will address it.

13. Security

We use encryption on your device and in transit, store synced content in encrypted form without holding your keys, and offer additional protections such as Maximum Security mode. No method of storage or transmission is ever guaranteed to be perfectly secure, but our design is intended to ensure that, in normal use, your content is not readable by anyone but you.

14. Changes to this policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date above and, where appropriate, notify you in the app. Your continued use of WispDay after changes take effect means you accept the updated policy.

15. Contact

Questions, requests, or concerns about this Privacy Policy or your data:

contact@wispday.com

This document describes how WispDay handles your information. It is provided for transparency and is not legal advice.