Privacy Policy

Effective Date: December 26, 2025

Last Updated: December 26, 2025

1. Information We Collect

1.1 Personal Information

When you create an account or use NoteNest, we may collect the following personal information:

• Account Information: Email address, username, and password (stored securely using Firebase Authentication)
• Profile Information: Display name and profile picture (optional, if provided by you)
• Google Sign-In Data: If you choose to sign in with Google, we collect your name, email address, and profile picture from your Google account

1.2 User-Generated Content

NoteNest is designed to store your personal productivity data locally on your device. This includes:

• Notes: Text content, titles, categories, and timestamps
• Reminders: Reminder titles, descriptions, scheduled times, and notification preferences
• To-Do Lists: Task descriptions, completion status, and priorities
• Wish Lists: Wish items and associated details
• Categories/Tags: Custom categories and organizational labels you create

Important: All user-generated content is stored locally on your device using encrypted SQLite database. We do not have access to the content of your notes, reminders, or tasks unless you explicitly choose to use cloud backup features.

1.3 Device and Usage Information

We automatically collect certain information about your device and app usage:

• Device Information: Device model, Android version, device identifiers, screen resolution
• App Usage Data: Features used, session duration, app version, interaction patterns
• Crash Reports: Error logs, stack traces, and device state information when the app crashes (collected via Firebase Crashlytics)
• Analytics Data: Aggregated usage statistics to understand feature popularity and user behavior (collected via Firebase Analytics)

1.4 Permissions

NoteNest requests the following Android permissions to function properly:

• Storage Access: To save and retrieve your notes, backups, and exported files
• Notifications: To send reminder alerts and important notifications
• Internet Access: For optional features like Google Sign-In, cloud backup, and crash reporting
• Network State: To determine connectivity for cloud features
• Wake Lock: To ensure reminders trigger even when device is in sleep mode
• Boot Completed: To restore scheduled reminders after device restart
• Camera/Gallery Access: To update profile pictures (optional, only when you choose to add a photo)

2. How We Use Your Information

We use the collected information for the following purposes:

2.1 To Provide and Maintain the App

• Authenticate your account and maintain session security
• Store and retrieve your notes, reminders, and tasks locally on your device
• Deliver scheduled reminder notifications
• Enable widget functionality on your home screen
• Process local and cloud backups when requested
• Export your notes in various formats (PDF, text, images)

2.2 To Improve and Optimize the App

• Analyze app usage patterns to improve user experience
• Identify and fix bugs, crashes, and performance issues
• Develop new features based on user needs
• Optimize app performance across different devices and Android versions
• Test new features and improvements

2.3 To Communicate With You

• Send password reset emails via Firebase Authentication
• Respond to your support requests and feedback
• Notify you of important app updates or changes to this Privacy Policy
• Send important service announcements (we do not send marketing emails)

2.4 To Ensure Security and Compliance

• Protect against unauthorized access and security threats
• Comply with legal obligations and enforce our Terms of Service
• Detect and prevent fraud or abuse of the App

3. Data Storage and Security

3.1 Local Storage

NoteNest is designed with a "local-first" approach. Your notes, reminders, and personal data are primarily stored locally on your Android device using:

• Room Database: A secure, encrypted SQLite database for all app data
• EncryptedSharedPreferences: For storing session tokens and sensitive preferences
• Encrypted Local Backups: When you create local backups, they are encrypted to prevent unauthorized access

Security Measures:

• Passwords are never stored in plain text
• All credentials use industry-standard encryption
• Session tokens are encrypted and securely managed
• Local database uses Android's built-in encryption mechanisms

3.2 Cloud Storage (Optional)

NoteNest offers optional cloud backup through Google Drive API. When you enable cloud backup:

• Your encrypted database is uploaded to your personal Google Drive
• You maintain full control over your Google Drive data
• We do not have access to your Google Drive content
• You can delete cloud backups at any time from your Google Drive

3.3 Third-Party Services

NoteNest integrates with the following third-party services:

Firebase (Google LLC)

• Firebase Authentication: For secure user authentication and password management
• Firebase Crashlytics: For crash reporting and stability monitoring
• Firebase Analytics: For aggregated usage statistics (no personally identifiable information)
• Firebase Remote Config: For dynamic app configuration (e.g., feature limits for free vs. premium tiers)

Firebase services are governed by Google's Privacy Policy: https://policies.google.com/privacy

Google Drive API

• Used only for optional cloud backup functionality
• Requires explicit user authorization
• Data stored in your personal Google Drive, not accessible by us

4. Data Sharing and Disclosure

4.1 We Do Not Sell Your Data

NoteNest does not sell, rent, or trade your personal information to third parties for marketing purposes.

4.2 Limited Data Sharing

We may share your information only in the following limited circumstances:

• With Your Consent: When you explicitly authorize us to share information (e.g., when sharing notes via Android share intent)
• Service Providers: With trusted service providers (Firebase/Google) who assist in operating the App, subject to strict confidentiality agreements
• Legal Requirements: When required by law, court order, or governmental request
• Safety and Protection: To protect the rights, property, or safety of NoteNest, our users, or the public
• Business Transfers: In connection with a merger, acquisition, or sale of assets (users will be notified)

4.3 Export and Sharing Features

When you use NoteNest's export or share features:

• You control what content is exported (PDF, text, or image format)
• You choose which apps to share content with (email, WhatsApp, etc.)
• Exported files are stored locally on your device unless you choose to share them
• We have no access to or control over exported content once it leaves the App

5. Data Retention

5.1 Active Accounts

We retain your account information and app data for as long as your account is active or as needed to provide you services.

5.2 Account Deletion

When you delete your account:

• Your account information is permanently deleted from our servers within 30 days
• Local data on your device is immediately deleted
• Cloud backups in your Google Drive remain under your control (you must delete them manually)
• Anonymized analytics data may be retained for statistical purposes
• Crash reports and logs are retained for up to 90 days for debugging purposes

To delete your account, visit our Account Deletion page.

5.3 Inactive Accounts

Accounts inactive for more than 3 years may be deleted after email notification to the registered email address.

6. Your Rights and Choices

6.1 Access and Update

You have the right to:

• Access your account information through the App's settings
• Update your profile information, display name, and profile picture
• Change your email address or password
• View all your notes, reminders, and tasks stored locally

6.2 Export Your Data

You can export your data at any time using:

• Individual note exports (PDF, text, image)
• Local backup (complete encrypted database export)
• Cloud backup (encrypted backup to your Google Drive)

6.3 Delete Your Data

You can delete your data by:

• Deleting individual notes, reminders, or tasks within the App
• Clearing all app data through Android Settings > Apps > NoteNest > Storage > Clear Data
• Requesting account deletion through our Account Deletion page

6.4 Opt-Out Options

• Analytics: You can disable analytics tracking in Settings > Privacy > Usage Analytics
• Crash Reports: Crash reporting can be disabled in Settings > Privacy > Crash Reporting
• Cloud Backup: Cloud backup is opt-in; you control when and if to use this feature
• Notifications: You can disable notifications through Android Settings or App Settings

7. Children's Privacy

NoteNest is not intended for use by children under the age of 13. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at saihemanth225@gmail.com, and we will delete such information from our systems.

8. International Data Transfers

NoteNest is operated from India. If you are accessing the App from outside India, please be aware that your information may be transferred to, stored, and processed in India or other countries where our service providers operate. By using NoteNest, you consent to the transfer of your information to countries outside your country of residence, which may have different data protection rules.

9. California Privacy Rights (CCPA)

If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA):

• Right to Know: You can request information about the personal data we collect, use, and disclose
• Right to Delete: You can request deletion of your personal information
• Right to Opt-Out: We do not sell personal information, so opt-out is not applicable
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights

To exercise these rights, contact us at saihemanth225@gmail.com.

10. European Privacy Rights (GDPR)

If you are located in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

• Right to Access: Request access to your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your personal data
• Right to Restrict Processing: Request limitation of how we process your data
• Right to Data Portability: Request transfer of your data to another service
• Right to Object: Object to processing of your personal data
• Right to Withdraw Consent: Withdraw consent at any time

To exercise these rights, contact us at saihemanth225@gmail.com. You also have the right to lodge a complaint with your local data protection authority.

11. Security Measures

We implement industry-standard security measures to protect your information:

• End-to-end encryption for sensitive data
• Secure HTTPS connections for all network communications
• Firebase Authentication with secure token management
• EncryptedSharedPreferences for local sensitive data
• Regular security audits and updates
• Encrypted local and cloud backups

However, please note: No method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal information, we cannot guarantee absolute security.

12. Third-Party Links

NoteNest may contain links to third-party websites or services (e.g., when sharing content). We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies before providing any information.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make changes:

• We will update the "Last Updated" date at the top of this policy
• Material changes will be notified through the App or via email
• Your continued use of NoteNest after changes constitutes acceptance of the updated policy

We encourage you to review this Privacy Policy periodically.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

• Developer: Thogoruchesti Hemanth
• Email: saihemanth225@gmail.com
• Response Time: We typically respond within 24-48 hours

For specific privacy-related requests (data access, deletion, or corrections), please include "Privacy Request" in your email subject line.

Effective Date: December 26, 2025