Back to Notara

Privacy Policy

Notara

Effective date: April 2025

Notara is designed so that your journal-style data stays on your device unless you export or share it. We do not operate a Notara-hosted account system or sync your entries to our servers as a core feature of the app.

Our Core Promise

Your incident documentation stays on your device. Notara is built on the principle that sensitive records of harm belong entirely to you — not to a company, a server, or a breach waiting to happen.

“Your records stay where you put them. On your device, under your control.”

Publisher

Notara is published by Matthew Kerr. Contact: hello@matthewkerr.org

Information the App Processes

The following information may be stored locally on your device through your use of Notara. None of it is transmitted to us in ordinary use:

  • Titles, descriptions, categories, tags, dates and times you enter — stored locally
  • Witness fields and other optional entry details — stored locally
  • Photos and voice memos you attach to entries — stored locally on device storage used by the app
  • Location coordinates and reverse-geocoded address text, only if you enable location for a specific entry — stored locally unless you export
  • Security settings: passcode verification data (not your raw passcode in plain text) and biometric preferences — stored locally
  • App settings and preferences — stored locally

Local Storage Only

All entries and attached media are stored exclusively on your device. There are no Notara servers, no databases, and no way for us to access your information.

No Data Transmission

The app never sends your personal data anywhere. Your entries, media, and settings stay private on your phone unless you actively export or share them.

No Analytics or Advertising

Notara does not include analytics, advertising, or behavioral profiling built into the product as shipped.

Offline-First

Notara is designed to work completely offline. There is no cloud sync built into the app. Your data does not travel to our servers as part of ordinary use.

What We Do Not Do

No Notara user accounts or login credentials on our servers
No advertising or behavioral profiling
No sale of your personal journal data — we do not receive that data from the app
No analytics on how you use the app
No identifiers sent to third parties
No crash reporting services that share data externally

When Data Leaves Your Device

Data leaves your phone only through actions you take:

Export (Quick PDF or full evidence package ZIP)
Backup from Settings
Share via the system share sheet (Messages, Mail, Files, etc.)
OS-level backups (e.g. iCloud / Google backup of the whole device) — governed by your device settings, not Notara

Data Security

Your data is protected by your device's own security — passcode, biometric lock, and full-disk encryption provided by iOS or Android. Enabling the app passcode in Notara adds a further layer before your entries can be accessed.

App Permissions

Camera & Photo Library

To attach photos to incident entries. You can deny this; photo attachment will be unavailable.

Microphone

To record voice memos attached to entries. You can deny this; voice memo recording will be unavailable.

Location (When In Use)

To attach optional GPS-based location to a specific entry. Location is off by default and only used when you enable it per entry.

Biometric Unlock

To unlock the app using Face ID or fingerprint, if you enable this in Settings. Biometric data is managed by your device OS, not by Notara.

Your Rights

Complete Ownership

You own 100% of your data. It is stored on your device and belongs to you entirely.

Export Anytime

Export your entries as a Quick PDF or a full evidence package ZIP whenever you choose. Use it however you want.

Delete Everything

Delete individual entries or all data from within the app. Because there is no cloud backup, deletion is final.

No Account Required

Use the app without creating an account or providing personal information. Start documenting immediately.

Children's Privacy

Notara is not directed at children under 13 (or the applicable age in your region). Do not use the app for or on behalf of children below that age without appropriate parental involvement.

International Users

If you use the app outside your home country, your information stays on your device as described. Exports you create and share may be subject to laws where you send them.

Changes to This Policy

If this policy changes, the Effective date at the top will be updated. Material changes may also be noted in release notes. Continued use after changes means you accept the updated policy.

Privacy Questions

Questions about this policy or how Notara handles data?

hello@matthewkerr.org

Why This Matters

Incident documentation is some of the most sensitive data a person can hold. It can reveal patterns of harm, name people involved, and carry real consequences for the person documenting. That information should never be at risk from a data breach, a company policy change, or a subpoena targeting a cloud provider.

Notara was built to keep that risk as low as possible by design: no cloud sync, no servers, no accounts, encryption on the things you choose to move.

Your records belong to you. Completely.

Terms of UseSupportBack to Notara