Saber's Privacy Policy

Saber is an application developed by Adil Hanney that facilitates the user in creating and organising handwritten notes.

This privacy policy may be updated from time to time. You can view the latest privacy policy at https://saber.adil.hanney.org/privacy_policy, and you can view the history of changes to the privacy policy on GitHub.

What data does the application use?

The application seeks to access the least amount of data possible and uses a zero-trust approach to cloud storage.

Data the application uses includes the user's:

Ads

Saber has been ad-free since September 2024. If you are using a version of the application older than v0.4.7, please update to the latest version.

How is the cloud used?

The cloud is used to store and sync the user's notes and settings between the user's devices but is not necessary for the application to function.

To use this feature, users need to make an account on a Nextcloud server of their choice to use as a cloud service. For users who don't want to choose a custom Nextcloud server, the official Saber server — run by Adil Hanney — is hosted at nc.saber.adil.hanney.org.

To maintain privacy, all notes are encrypted before being sent to the cloud. A randomly generated key is used to encrypt the notes. This key and password are stored on the user's device in secure storage, and an encrypted form of the key is uploaded to the cloud.

My notes are private, right?

With any cloud storage, the server owners can see and read any files you upload. This is why Saber encrypts your notes before uploading them to the cloud, so they're unreadable to the server owner.

So what data can the server owners see?

“Talk is cheap. Show me the code.”

The source code is free and open to the public under the GPLv3 license and is available on GitHub.

How can I delete my data?

How you can delete your data will vary based on which cloud provider you use.

  1. If you don't use a cloud provider, your data is only stored on your device. If you delete the app, your data will be deleted with it. Desktop users will also need to delete the Saber folder in your Documents folder.
  2. If you use the default cloud provider, you can head to the account deletion page by going to Settings then "Delete account". You'll get an email with a link to confirm the deletion of your account. Once you click the link, your account will be deleted after a 1 week grace period. If you change your mind, contact me at adilhanney@disroot.org and I'll cancel the deletion.
  3. If you use a third-party Nextcloud server, there may be a "Delete account" option in the Settings. If not, you may need to contact the server administrator to delete your account. You should see the server's privacy policy for more information.

Privacy point of contact

This application is developed by Adil Hanney. You can contact me at adilhanney@disroot.org for any enquiries, or create an issue on this repo (requires a GitHub account).


See this page on GitHub