All notes are encrypted on your device using a unique encryption key generated during your first use of Task-Note. This key is never transmitted to our servers. Without access to this key, no one — including Task-Note developers or administrators — can decrypt or read your data. Only you can access your notes.
When you create a Task-Note account to sync your notes across devices, we ask for basic information such as your email address and password. All note content is encrypted on your device before being sent to our servers. Your encryption key is generated on the first launch of the app and never leaves your device, meaning only you can read your notes. Important: If you lose your encryption key, you will permanently lose access to your data. Since we do not store or manage your key, it cannot be recovered or reset.
Even though the encrypted notes are stored in a secure Supabase database (located in the United States and compliant with GDPR), the decryption process happens only on your device, and we cannot access the contents of your notes.
We use Supabase's secure infrastructure to store encrypted data. Supabase complies with major security and privacy standards and fully supports the EU General Data Protection Regulation (GDPR). All communication with our server is encrypted via HTTPS. Additionally, all data stored in the database is encrypted at rest using modern cryptographic methods.
Learn more at: https://supabase.com/security
You control your content. If you delete a note, it will be securely removed from your device and server.
If you have questions or concerns about privacy, please contact us at: [your support email]