Privacy Policy
Skrive is a one-person project. This policy explains what data is collected, how it is used, and how it is protected. The short version: your journal entries are encrypted on your device and unreadable by anyone but you.
What data is collected
Account data. When you create an account, we store your email address and a hashed password. This is used solely for authentication.
Journal entries. Your entries are encrypted with AES-256 on your device before being transmitted. The encrypted ciphertext is stored for backup and sync purposes. We have no ability to read the contents of your entries.
Subscription status. We store whether your account has an active subscription, and a Stripe customer ID to link your account to your payment record.
Email waitlist. If you sign up for the mobile waitlist, your email address is stored with Buttondown, a third-party newsletter service. You can unsubscribe at any time.
What data is not collected
We do not collect analytics, usage data, crash reports, device identifiers, or any behavioral data. We do not use tracking pixels, third-party scripts, or advertising SDKs.
Where data is stored
Account data and encrypted journal entries are stored on servers located in the European Union, provided by Supabase. Payment processing is handled by Stripe, which operates under its own privacy policy.
Third-party services
- Supabase — authentication, database, and storage (EU)
- Stripe — payment processing
- Buttondown — mobile waitlist email
Data retention
Your data is retained for as long as your account exists. You can request deletion of your account and all associated data at any time by emailing hello@skrive.app.
Your rights
Under GDPR, you have the right to access, correct, export, or delete your personal data. To exercise any of these rights, contact us at hello@skrive.app.
Contact
Questions or concerns about this policy? Reach out at hello@skrive.app.