Privacy Policy

Effective Date: February 2026 · Last Updated: February 2026

Our Promise

We can't read your journal. By design.

CortexOS is built on a simple principle: your thoughts belong to you. Not to us. Not to advertisers. Not to anyone.

This isn't marketing. It's architecture.

The Short Version

Question	Answer
Do you store my journal entries?	No. They stay on your device.
Can you read my entries?	No. They're encrypted with keys we don't have.
Do you sell my data?	No. We have no data to sell.
Do you use my entries to train AI?	No. All AI runs locally on your device.
What do you collect?	Minimal, anonymous analytics.

1. What We DON'T Collect

Let's be clear about what we never have access to:

Your journal entries
Your AI analysis results
Your emotions, sentiments, or detected patterns
Your voice recordings or transcriptions
Your photos or attachments
Your encryption keys
Your biometric data

This data exists only on your device, encrypted with keys stored in your device's secure hardware (Android Keystore).

2. What We DO Collect

We collect minimal, anonymous data to improve the App:

2.1 Anonymous Analytics

Data	Purpose	Identifiable?
App opens	Understand usage patterns	No
Feature usage	Know what features matter	No
Crash reports	Fix bugs	No PII included
Subscription tier	Service delivery	Tied to Play Store, not content
Device type/OS version	Compatibility	Aggregated only

2.2 Account Information (Optional)

If you create an account or subscribe:

Data	Purpose	Storage
Email (if provided)	Account recovery, receipts	Encrypted, minimal retention
Purchase history	Subscription management	Via Google Play

We never link account information to journal content. We can't—we don't have access to the content.

3. How Encryption Works

On-Device Encryption

Your Entry → AES-256-GCM Encryption → Stored Locally
                    ↑
            Key from Android Keystore
            (Hardware-secured, never exported)

Algorithm: AES-256-GCM (military-grade)
Key Storage: Android Keystore (hardware-backed on supported devices)
Key Access: Requires device authentication (PIN, fingerprint, face)

What This Means

If someone steals your phone (locked): They can't read your entries.
If someone gets your database file: It's encrypted gibberish without the key.
If we're subpoenaed: We have nothing to give. Literally.

4. AI Processing

All AI Runs On-Device

CortexOS uses TensorFlow Lite models that run entirely on your phone:

Sentiment analysis: On-device
Emotion detection: On-device
Entity recognition: On-device
Voice transcription (Whisper): On-device
Pattern analysis: On-device

No data is sent to external AI services. No OpenAI. No Google Cloud. No APIs.

Why This Matters

Other apps send your entries to cloud servers for AI processing. That means:

Their servers see your raw text
Your data trains their models
Your thoughts exist on computers you don't control

CortexOS doesn't work that way. Your phone does all the thinking.

5. Data Storage

Where Your Data Lives

Data Type	Location	Encrypted?
Journal entries	Your device only	Yes (AES-256-GCM)
AI analysis	Your device only	Yes
Settings	Your device only	Partially
Subscription status	Google Play	Per Google's policy

Backups

Local backups: Encrypted, stay on your device
Cloud backups: If you enable Android backup, encrypted data may be included—but it's still encrypted and we don't have the keys

6. Third-Party Services

Google Play Billing

For subscriptions, we use Google Play Billing. Google handles:

Payment processing
Receipt validation
Subscription management

Google's privacy policy applies to payment data: https://policies.google.com/privacy

Firebase (Limited)

We use Firebase for:

Crash reporting (Crashlytics) - no PII
Anonymous analytics - aggregated only

We do NOT use Firebase for:

User authentication
Data storage
Push notification content

7. Your Rights

Access & Export

You can export your entries at any time (decrypted, on your device)
You control your data completely

Deletion

Delete entries anytime within the App
Uninstall the App to remove all local data
We have no server-side data to delete because we never had it

Portability

Your data is yours
We support standard export formats

8. Children's Privacy

CortexOS is not intended for children under 13. We do not knowingly collect information from children under 13. If you believe a child has provided us with information, please contact us.

9. International Users

CortexOS is operated from Malta, European Union. We comply with:

GDPR (General Data Protection Regulation)
CCPA (California Consumer Privacy Act)

Our zero-knowledge architecture means most data protection concerns don't apply—we simply don't have the data.

10. Changes to This Policy

We may update this Privacy Policy. Changes will be posted here with an updated "Last Updated" date. Material changes will be communicated via the App.

11. Contact Us

Questions or concerns?

Email: info@cortexos.app
Website: https://cortexos.app

12. Summary

Most privacy policies are about what companies promise not to do with your data.

Ours is about what we can't do—because we built it that way.

We can't read your entries.
We can't sell your data.
We can't train AI on your thoughts.
We can't comply with requests for data we don't have.