Skip to content

Privacy

Your notes are not the product.

NoteNext is built on a simple promise: what you write stays on your device, full stop. No accounts, no telemetry, no behavioral tracking. Here's exactly how that promise is kept.

Local-first by architecture

All notes, checklists, projects, labels, attachments, and settings live in your device's private storage. There is no NoteNext server. There is no NoteNext account. The INTERNET permission exists only to fetch link previews, download Google Fonts, and — if you opt in — back up to your personal Google Drive. It is never used to upload note content anywhere we can see.

Decoy Vault — plausible deniability

If someone forces you to unlock the app, you can quietly enter a secondary PIN. NoteNext opens a separate, innocent-looking set of notes — your real notes remain hidden. When the Decoy Vault is enabled, biometric login is automatically suppressed so attackers can't bypass the choice with your finger or face.

App Lock is enforced automatically when Decoy Vault is active.

Self-destructing notes

Set any note to vanish at a chosen date and time. Deletion is scheduled with Android exact alarms — fully on-device, no external service involved. When the alarm fires, the note is wiped from local storage and from any in-memory cache.

Screenshot & recents protection

On the App Lock screen, NoteNext sets the FLAG_SECURE window flag — Android blocks screenshots and hides app content from the system Recents menu. Your notes can't be leaked through screen recordings or task switchers.

Forensic hardening

We've explicitly disabled the Android features that exfiltrate app data:

  • Auto Backup disabled — Google won't sync your notes to its servers in the background.
  • Cloud extraction disabled (Android 12+) — your notes are excluded from the platform's cloud-restore pipeline.
  • Device-to-device transfer disabled — when you switch phones, NoteNext data does not migrate via Google's transfer tool.

The result: your notes stay inside your device's hardware-bound encryption vault, not scattered across cloud caches.

AI is opt-in, transparent, and minimal

NoteNext supports Groq, OpenAI, Anthropic Claude, and Google Gemini for optional summarization and grammar fixes. Content is sent only when you tap an AI action — and only the text of the specific note you're editing. Nothing is logged on our side, because there is no "our side" — requests go from your device directly to the provider you chose.

Open source — every claim is auditable

NoteNext is MIT-licensed and developed in the open. Every privacy claim on this page is verifiable in the source code. If you find something we missed, we'd genuinely like to hear from you — open an issue or pull request on GitHub.

Read the formal Privacy Policy

The complete legal text covering data collection, third-party services, and your rights.

View Privacy Policy