Encryption and Privacy

otio protects what you log with end-to-end encryption designed so only your devices can decrypt your journal under normal use. Your journal is encrypted on your device before it is uploaded. Encrypted data is stored on our servers. Your encryption keys stay on your devices—not on our servers as usable keys.

What we encrypt: emotions, journal notes, energy levels, saved insights, and your email in your profile.

What stays unencrypted for functionality: timestamps and timezone (so calendar and history views work).

How it works:

• Your device creates an encryption key used for your journal.

• That key is stored in your iCloud Keychain when available.

• When you set up the app, you receive a recovery key. Save it somewhere safe.

• On a new device, iCloud Keychain may restore access automatically. If not, you will need your recovery key.

• We cannot reset or recover a lost recovery key.

Strong standards: AES-256 with authenticated encryption.

Secure in transit: all traffic uses TLS.

Fast in use: keys are securely cached on device for quick decrypts.

Optional features are separate from journal encryption:

If you opt in to AI insights, about the last 7 days of relevant check-ins may be sent securely for analysis when you open insights. Generated insights are stored for your account in encrypted form. You can turn this off in Account settings.

If you opt in to Zeitgeist, new logs you save while it is on may be added to an anonymous community pool. You can turn this off in Account settings.

For full details, see our Privacy Policy.