Quiet by design.

Last updated: May 6, 2026

The short version: Memkeep is end-to-end encrypted by default. Your memories are encrypted on your device before they leave it. The sync server stores ciphertext only — even we can't read your data. We don't run analytics, ads, or trackers. You can delete everything at any time, from inside the app.

What Memkeep is

Memkeep is a local-first, end-to-end encrypted shared journal for couples, families, and close friend groups. The app is built on Jazz, a CRDT (conflict-free replicated data type) framework that lets your devices sync data without exposing it to anyone in the middle — including us.

Data we collect

On your device. The content you create — notebook entries, photos, comments, your profile, your spaces and members — lives on your device first. Memkeep is local-first, so the app works offline and stores a full copy locally for instant access.

On our sync server. When your device is online, Memkeep syncs your data to other devices in your shared spaces. The sync server only ever sees:

Encrypted ciphertext of your content (we cannot decrypt it)
Minimal account metadata: your account ID, last-seen timestamp, and the encrypted membership graph used to route updates between devices in the same space

Crash reports. We may collect anonymous crash reports to fix bugs and improve app stability. Crash reports never contain memory content, photos, or personal information — they only describe the technical state of the app when it crashed (e.g. "the home screen crashed when scrolling on iOS 18.2").

What we do NOT collect. No analytics SDKs. No advertising IDs (IDFA/AAID). No behavioral tracking. No location pings. No third-party trackers. No "anonymized" telemetry that could be re-identified later.

End-to-end encryption

Every notebook entry, every photo, every comment is encrypted on your device before it is sent anywhere. The encryption keys are generated and stored on your device — they never leave it in plaintext. Members of a shared space exchange keys through the same end-to-end encrypted channel, so only invited members can decrypt the content.

Our sync server sees only ciphertext. Even we, the developers of Memkeep, cannot read your memories. There is no backdoor and no recovery key on our side. If you lose all your devices and have not paired a new one, your data is unrecoverable — that's a feature, not a bug.

Permissions

Camera & Photo Library — used when you attach a photo to a memory. Photos are encrypted on-device before they leave it.
Location (optional) — used only if you tag a memory with a place. Location stays on your device and inside your encrypted sync data.
Notifications (optional) — used for memory reminders you opt into. Notification content is generated on your device.

In-App Purchases

Memkeep offers a single consumable in-app purchase that unlocks an additional notebook or extends a notebook's photo capacity. Purchases are processed entirely by Apple App Store or Google Play. We do not see your payment details, and we do not store transaction records on our server — your entitlement is granted on your device after the store confirms the purchase.

Sharing

We do not sell, rent, or share your data with anyone. Shared notebooks are visible only to the people you invite using end-to-end encrypted invite links. We have no way to access the contents of those notebooks.

Your rights

You have the right to access, correct, and delete your data. Because Memkeep is end-to-end encrypted and local-first, you can do all of this directly from inside the app at any time, without contacting us — your data is on your device and you control it. We respect your rights under applicable data protection laws.

Contact

Questions about this policy? Reach us at [email protected].

Changes

If we make material changes to this policy, we'll update the date at the top of this page and, for significant changes, mention them in the app's release notes.