CIPHIO
← Back to Home

Ciphio – Privacy Policy

Last updated: January 31, 2026

1. Privacy First Architecture

All Ciphio apps are built on a zero-access design philosophy. All sensitive data is encrypted and stored locally on your device. Ciphio does not have access to your data and cannot decrypt it.

We do not collect, view, sell, or share user data across any of our applications.

2. Information We Do NOT Collect

Ciphio does NOT collect:

  • Stored passwords or vault contents
  • Encrypted text data
  • Notes or private content
  • Sleep tracking data or sleep patterns
  • Biometric data
  • Personal identity profiles
  • Calendar data (only accessed when you explicitly choose to add events)

All such data remains encrypted and fully under user control on the device.

3. Ciphio Vault Privacy

Ciphio Vault stores all password and encrypted data locally on your device using AES-GCM encryption. Your master password and vault contents are never transmitted to Ciphio servers. We use platform-level security features (Android Keystore and Apple Keychain) to protect your encryption keys.

4. Ciphio Sleep Privacy

Ciphio Sleep does not collect, store, or transmit any personal data. All sleep tracking data is stored locally on your device using SwiftData. No analytics, no tracking, no internet connection required.

Calendar access is only used when you explicitly choose to add sleep events. Notifications are local only and do not require server communication.

5. Anonymous Technical Metrics

Ciphio may process limited technical metrics for application improvement and stability purposes. These metrics are anonymous and cannot be used to identify you.

This may include:

  • App performance statistics
  • Feature usage trends
  • Crash diagnostics
  • Session duration patterns
  • Basic device and operating system version

These metrics:

  • Do NOT include personal data
  • Are NOT linked to individual users
  • Are NOT used for profiling or advertising

Ciphio does not monitor or track user behavior for marketing or behavioral analysis.

6. Data Security

We employ industry standard encryption and secure coding practices to protect all sensitive data:

  • AES-GCM encryption
  • Secure key derivation
  • Local-only storage architecture
  • Platform-level security features (Android Keystore and Apple Keychain)

Your data is never transmitted to Ciphio servers.

7. Third Party Services

In limited cases, essential third-party services may be used for operational functionality such as crash reporting or application performance. These services are configured to respect anonymization standards and do not receive personal data or sensitive information.

8. User Rights

You maintain full control over your data on your device. Since data is not stored on Ciphio servers, requests for deletion or access apply only to locally stored content, which you can manage directly within each app.

9. Policy Updates

We may update this Privacy Policy periodically. Any changes will be published on this page with a revised date.