MorningKeep

Privacy

MorningKeep Privacy Policy

MorningKeep is a daily ritual for your own thinking: capture Sparks, reflect with Cue, and begin each morning with a clear brief. Privacy is foundational to that experience. Your thoughts belong to you.

Last updated: March 8, 2026

1. Introduction

This policy explains what data MorningKeep handles, how it is used, and what controls you have. We designed MorningKeep around local-first and CloudKit-first storage so your information stays in your Apple ecosystem.

2. What We Collect

  • Sparks and thoughts: Stored on-device and in your iCloud via CloudKit. Your Sparks never leave your Apple ecosystem unless you explicitly use AI features.
  • Health data: With your permission, MorningKeep reads activity and sleep data from HealthKit to identify your best thinking patterns (e.g., time of day, activity level). Health data is processed on-device only and never sent to external services.
  • Voice and microphone: With your permission, MorningKeep can capture voice Sparks using your device microphone. Voice recordings are stored locally and processed through AI services (see Section 4) for transcription and understanding. We do not store raw voice input on our servers.
  • Email address: Optionally provided during onboarding or purchase. Used only for account support and product updates. Stored securely in your device Keychain, not on external servers. You may skip this entirely.
  • Usage analytics: Anonymized product telemetry through TelemetryDeck. No personal identifiers are included.
  • Account information: Apple Sign In only. We receive a stable Apple identifier, not your email unless you explicitly share it.

3. How We Use Your Data

We use your data to generate your Morning Briefs, power Cue AI conversations, detect patterns in your thinking, and identify your optimal creative conditions. The product is designed to operate local-first with CloudKit synchronization, rather than central server-side profiles.

4. How We Use AI

MorningKeep uses AI services to process your Sparks and generate insights, briefs, and Cue responses. We use the following providers:

  • Google Gemini API (primary): Processes Spark content for insights, Morning Briefs, and conversational interactions with Cue. Under Google API terms, your data is not used to train Google's models.
  • OpenAI API (fallback): Used only when Gemini is unavailable. Same data handling principles apply. Your data is not used for model training under OpenAI's API terms.
  • ElevenLabs (voice narration): Dawn (Pro) tier only. Text is sent to ElevenLabs to generate Cue's voice narration for Morning Briefs. No Spark content is shared — only the generated brief summary text.

All AI requests are routed through MorningKeep's secure proxy infrastructure with certificate pinning and App Attest verification. AI responses are ephemeral — we do not store conversation history on our servers. Offline caching of AI results is stored locally on your device only.

5. What We Don't Do

  • We do not sell your data.
  • We do not share your Sparks with third parties.
  • We do not read your thoughts.
  • We do not use your data for advertising.
  • We do not use your data to train AI models.
  • We do not store your Health data outside your device.

6. Data Storage & Security

Primary storage lives on your device and in your iCloud through CloudKit. MorningKeep does not operate centralized databases of your thoughts.

Security measures include: biometric authentication (Face ID / Touch ID) with immediate lock on background, Keychain storage for sensitive data, certificate pinning for all network requests, and Apple App Attest for API request verification.

7. Data Deletion

You can delete your account and associated data from Settings > Privacy > Delete My Data. CloudKit data is removed within 24 hours. Locally cached AI responses are deleted immediately.

8. Contact

For privacy questions, email [email protected].