SecondBrain Privacy Policy

Last Updated: March 2026

Overview

SecondBrain ("the App") is committed to protecting your privacy. This policy explains how we collect, use, and safeguard your data.

Data Collection

SecondBrain operates primarily on-device. Depending on your selected Storage Mode, data handling varies:

FREE Tier (Local Storage)

• What we collect: Nothing. All memories stored locally on your device.
• Sync: No cloud sync. Memory data never leaves your device.
• AI Chat: Uses Apple Foundation Models (on-device processing). Your messages and memories are processed locally and do not leave your device.
• Third parties: No memory data shared with any third party. AI processing is on-device only.

STANDARD Tier (iCloud)

• What we collect: Memory content, tags, timestamps.
• Storage: Encrypted in your personal iCloud account (Apple manages encryption).
• Sync: iCloud sync across your Apple devices (iPhone, iPad, Mac, Watch).
• AI Chat: Uses Apple Foundation Models (on-device processing). Your messages and memories are processed locally and do not leave your device.
• Third parties: Only Apple iCloud for sync (subject to Apple Privacy Policy). AI processing is on-device only.

PREMIUM Tier (CloudFlare)

• What we collect: Memory content, tags, timestamps, embeddings for semantic search.
• Storage: CloudFlare Workers KV + Vectorize (encrypted at rest).
• AI Processing: CloudFlare Workers AI for auto-correction, classification, summarization.
• Third parties: CloudFlare (subject to CloudFlare Privacy Policy).
• Data retention: Memories stored until you delete them or cancel subscription.

Voice Recognition

• Microphone: Required for voice capture feature.
• Speech Recognition: Uses Apple's on-device Speech Framework (iOS 18.2+ with Apple Intelligence).
• Transcription: Processed locally on your device. Never sent to external servers.
• Opt-in: Voice capture requires explicit microphone permission.

Apple Foundation Models (On-Device AI)

• On-Device AI: Memory summarization and smart chat use Apple Foundation Models when available (iOS 26+).
• Privacy: All on-device AI processing stays on your device. No data is sent to Apple or any third party.
• Availability: Requires a device with Apple Intelligence support and iOS 26 or later.

AI Chat (All Tiers)

SecondBrain includes an AI Chat assistant. The app requests explicit in-app consent before any AI processing. The data processed and the processing location depend on your tier:

FREE & STANDARD Tiers (On-Device)

• Data processed: Your chat messages and relevant memories from your local database.
• Processing: Apple Foundation Models running entirely on your device.
• Third-party sharing: None. No data leaves your device.

PREMIUM Tier (Cloudflare Backend)

• Data sent: Your chat messages, relevant memories from your database, and optionally your location (if enabled in Settings).
• Who receives data: Cloudflare Workers (infrastructure) and Meta Llama 3.3 70B (AI model), running on your personal Cloudflare account.
• How data is collected: Data is sent via HTTPS when you send a message in AI Chat.
• Purpose: To generate AI-powered responses to your questions about your memories.
• Data protection: All data transmitted via HTTPS encryption. Data is not permanently stored on Cloudflare servers and is not used for AI model training.
• Third-party protection: Cloudflare provides equal or greater data protection as described in the Cloudflare Privacy Policy.
• Your control: All processing occurs on YOUR Cloudflare account. We (SecondBrain developers) never see or access your data.

Consent: The app displays a dedicated consent screen on first launch explaining what data is processed, who processes it, and requires your explicit agreement before any AI features are used. You can revoke consent at any time in Settings.

Data Sharing

We do NOT:

• Sell your data to third parties
• Use your data for advertising
• Track your behavior across apps
• Collect analytics or telemetry (beyond standard Apple crash reports)

We DO:

• Sync via iCloud (STANDARD tier)
• Process AI embeddings via CloudFlare (PREMIUM tier)
• Use Apple's crash reporting (anonymized, opt-in via iOS Settings)

Third-Party Services

Apple iCloud (STANDARD Tier)

• Purpose: Cross-device sync
• Policy: Apple Privacy Policy

CloudFlare (PREMIUM Tier)

• Purpose: AI-powered semantic search, auto-correction, summarization
• Policy: CloudFlare Privacy Policy
• Region: EU data residency (CloudFlare EU servers)
• AI Chat: Meta Llama 3.3 70B via Cloudflare Workers AI for chat responses (subject to CloudFlare Privacy Policy).

Children's Privacy

SecondBrain is rated 4+ and suitable for all ages. We do not knowingly collect data from children under 13 without parental consent.

Your Rights

You have the right to:

• Access: Export your memories anytime (JSON export in Settings)
• Delete: Delete individual memories or all data (Settings → Delete All)
• Portability: Export to JSON format for migration
• Opt-out: Switch Storage Modes (FREE → STANDARD → PREMIUM)

Data Retention

• FREE Tier: Data stored locally until you delete the app
• STANDARD Tier: iCloud data persists until you delete or disable iCloud sync
• PREMIUM Tier: CloudFlare data deleted when you cancel subscription or delete memories

Security

• Encryption: All cloud storage encrypted at rest (iCloud, CloudFlare)
• Transport: HTTPS/TLS for all network communication
• Authentication: No user accounts required (FREE tier). iCloud/CloudFlare auth via API keys.

Changes to This Policy

We may update this policy. Changes will be posted in-app and on this page.

Notification: Major changes will trigger an in-app alert.

Contact

For privacy questions or data deletion requests:

• Email: henry.krupp@gmail.com