NotePi Privacy Policy

Last updated: January 1, 2025

1. Introduction

Your privacy matters to us. This Privacy Policy explains how NotePi ("we", "us", or "our") collects, uses, and safeguards information when you use our websites, applications, and related services (collectively, the "Service").

By accessing or using the Service, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

  • Account Information – such as your name, email address, password hash, subscription plan, and payment status.
  • Content Data – the notes and tags you create as well as AI-generated summaries you explicitly request. This content is stored solely so that you, and only you, can access it.
  • Minimal Log Data – basic metadata (e.g., IP address, request time-stamp) retained temporarily for security and fraud-prevention purposes.
  • Payment Data – handled by our third-party payment processor (e.g., Stripe). We receive a payment token and limited metadata (not your full card number).

3. How We Use Information

  • Provide and maintain the Service, including AI-powered report generation and progress tracking.
  • Authenticate you and manage your subscription, free-trial eligibility, and billing.
  • Operate core features you request, such as storing your notes, generating AI summaries on demand, and managing your subscription.
  • Communicate with you about product updates, promotions, and customer support.
  • Detect, prevent, and investigate fraud or abuse (e.g., multiple account creation to bypass trials).

4. Legal Bases of Processing

We rely on the following legal grounds, where applicable under the GDPR and similar regulations:

  • Performance of a contract – to deliver the Service you requested.
  • Legitimate interests – to maintain, improve, and secure our Service.
  • Consent – for optional marketing emails and analytics cookies.
  • Legal obligation – where we must comply with laws or lawful requests.

5. Data Retention

We retain your information for as long as your account is active or as needed to provide the Service. If you delete your account, your personal data and notes will be purged within 30 days unless retention is required by law.

6. Sharing & Disclosure

We do not sell, rent, or use your data to train AI models or improve our Service. We may share it only:

  • With infrastructure or payment providers that are contractually bound to process data solely on our instructions and solely for the purpose of delivering core functionality (e.g., cloud database hosting, payment processing). We never transmit your notes or tags to third-party analytics or advertising platforms.
  • If required by law or to respond to valid legal requests.
  • To protect the rights, property, or safety of NotePi, our users, or the public.

7. International Transfers

NotePi is operated from the United States but may process data using servers located in other countries. We implement safeguards (such as Standard Contractual Clauses) for cross-border transfers where required.

8. Data Security

Your data is encrypted at rest and in transit. Access to production databases is strictly limited to authorized personnel, protected by multi-factor authentication, and subject to continuous monitoring. Application-level safeguards ensure that only you—authenticated through your account—can access your notes.

9. Your Rights

Depending on your location, you may have rights to access, correct, delete, or export your personal data, object or restrict processing, and withdraw consent. To exercise these rights, contact us at support@notepi.com.

10. Children's Privacy

NotePi is not directed to children under 13. We do not knowingly collect personal data from children. If you believe a child has provided us information, please contact us and we will promptly delete it.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Material changes will be notified via email or prominent in-app notice. Continued use of the Service after the effective date constitutes acceptance of the revised policy.

12. Contact Us

If you have questions about this Privacy Policy, please email us at privacy@notepi.com.