No tracking: no ads, no analytics, no fingerprinting, no data sharing.
Your data: plain markdown, exportable anytime as a zip of .md files.
Local vault: with the desktop app's local vault, your notes never leave your machine at all.
Encryption: cloud-vault notes are not end-to-end encrypted — see below.
What we collect (cloud vault)
Email address: account sign-in and folder invitations.
Name: what @assigned(name) matches in task lines, and what collaborators see on your cursor.
Password: stored as a secure bcrypt hash, never in plain text.
Your notes: the pages you write — this is the service. Stored as plain markdown in the operator's database.
Sharing metadata: the share links and invitations you create, so they can work and be revoked.
Agent tokens: if you connect an agent (MCP), its token and a coarse last-used timestamp.
We collect no payment information: billing for the hosted
beta is handled outside the app, and no payment processor is integrated.
What we don't collect
No analytics trackers (no Google Analytics, no Mixpanel, nothing)
No advertising IDs or device fingerprinting
No content scanning or data mining
No location tracking
No third-party cookies
We do not sell, rent, or share your data with anyone.
Encryption
In transit: all connections to a hosted brainlog use TLS.
At rest: notes are stored as plain markdown in the server's database. They are not end-to-end encrypted: the operator's server can technically read them, and server-side features (task views, search, share pages, the agent connection) depend on that.
Want stronger guarantees? Use the desktop app's local vault: everything stays in a folder on your own machine, served only on 127.0.0.1, and nothing is sent to any server. Combine with your OS's disk encryption.
Sharing — what becomes visible to whom
Folder members can read and edit everything in that folder.
Share links make a page or section readable by anyone who has the URL, until the link expires or you revoke it.
Agent tokens let an AI tool act as you — it can read and write (never delete). Treat tokens like passwords; revoking one cuts access immediately.
Your rights (GDPR)
Access & portability: export any folder as a zip of standard .md files, anytime, from the app.
Rectification: edit your profile and content directly in the app.
Erasure: delete your folders and pages in the app; for full account deletion, contact the operator.
Cookies & local storage
Session cookie: keeps you signed in.
CSRF token: a security measure.
Browser local storage: your theme and sidebar preferences — stored in your browser, never sent to the server.