Privacy & Protection

Access Control Model

Notexo supports four protection modes for your notes:

Password Security

• Passwords are hashed using bcrypt with strong salts (never stored in plain text)
• We cannot see or recover your password
• Password is the sole proof of ownership—no email, no account recovery
• If you lose your password, the note is permanently inaccessible

Data Collection

We collect minimal data:

• Note content: Stored encrypted in our database
• Timestamps: Created and updated times for each note
• Support requests: When you submit a recovery request, we store your description and optional email
• No tracking cookies: We don't use analytics or advertising trackers
• No user accounts: We don't store personal information, emails, or profiles

Encryption

All data is encrypted in transit (HTTPS/TLS) and at rest. Note content is stored securely in our database with appropriate access controls. Only password holders can unlock protected notes.

Lost Password Recovery

If you lose your password, you can submit a recovery request through our Support page. Recovery requires:

• Detailed proof that you are the original note creator
• Manual verification by our team
• Processing time of 1-7 business days
• No guarantee of success—privacy is our priority

Note Unlocking

When you unlock a protected note, The note will be publicly accessible until you lock it again.

Questions?

If you have concerns about privacy or security, please visit our Support page or send us Feedback.