Encryption and Privacy

otio protects what you log with strong, modern encryption. Sensitive data is encrypted on your device before it’s saved, with keys kept in your iCloud Keychain so only you can decrypt it. Performance is tuned so everything still feels fast.

• What we encrypt: emotions, journal notes, energy levels, insights, and your email.

• What stays unencrypted for functionality: timestamps and timezone.

• Strong standards: AES-256 with authenticated encryption and HKDF key derivation.

• Your keys, your device: per-user keys stored in iCloud Keychain, not on our servers.

• Private by design: servers never store plain text insights; the app encrypts before saving.

• Secure in transit: all traffic uses TLS 1.3.

• Fast in use: keys are securely cached on device for quick decrypts.

• Easy device changes: iCloud Keychain brings your access to new devices automatically.

When you use AI insights, your entries are temporarily decrypted on your device, sent securely for analysis, and then re-encrypted before being stored. No plain text is ever kept on our servers.