Last Updated: October 24, 2023
Privacy isn't just a feature of CipherKit—it is the foundational architecture of the app. We believe your private text, ciphers, and secure notes belong to you and you alone.
CipherKit has zero network dependencies. We do not operate servers, we do not track telemetry, and the app does not even request network access entitlements. Everything stays on your device.
All computational heavy lifting—including Optical Character Recognition (OCR), AI explanations, and brute-force cipher cracking—utilizes your device's native Neural Engine and CPU. Your photos and texts are never uploaded for processing.
The Vault secures your entries using military-grade AES-256-GCM cryptography provided by Apple's native CryptoKit. The symmetric keys are stored securely in your device's Keychain. We cannot access or recover your data.
CipherKit uses Face ID or Touch ID strictly as a gateway to access your local Vault keys. Biometric data never leaves the Secure Enclave of your Apple device, and CipherKit only receives a standard "success" or "failure" token from the OS.
We do not collect any personal data. CipherKit does not require an account, does not use third-party analytics SDKs, and does not monitor how you use the app.
If the app crashes, Apple may provide us with anonymized crash logs, but only if you have explicitly opted-in to share analytics with developers in your iOS/macOS system settings. These logs contain no user data, cipher text, or Vault contents.
CipherKit may request the following permissions during use, all of which are processed strictly on-device:
Face ID / Touch ID: Used exclusively to unlock your secure Vault.
Camera & Photo Library: Used strictly for Optical Character Recognition (OCR) so you can scan ciphers from real-world images. The images are processed by Apple's Vision framework locally on your device and are never saved or transmitted by us.
Because we collect absolutely no data, we have absolutely no data to share, sell, or rent to any third parties.
If we add new features that fundamentally change how data is handled (for example, introducing an optional iCloud sync feature for the Vault), we will update this policy and clearly prompt you within the app before any such features are enabled.