Security

Built private-first.

Voice notes are half-formed thoughts and honest reminders — the kind of thing that should stay yours. Here is how Recordify is engineered to keep it that way, in plain language.

Local-first by design

Every recording saves to your device before anything else happens. The cloud is optional — a layer on top, never a requirement.

Your library is isolated

When cloud sync arrives, every request is checked against your account on the server. There is no path from someone else’s account to your recordings — not by accident, not by guessing.

Private storage only

Cloud audio will live in private storage with no public files. The only way in is a short-lived link generated for you, for one file, for a few minutes.

Strong account security

Accounts arrive with launch. Passwords are stored with modern hashing — never in plaintext — sessions expire on a short clock, and you can sign out of every device at once.

Payments verified server-side

When subscriptions launch, every purchase is confirmed directly with the billing provider before anything unlocks. The app’s own word is never trusted.

Delete means delete

Deleting your account permanently purges your recordings, transcripts, and data after a short grace window — and you can export everything first.

Cloud sync, accounts, and subscriptions arrive with launch — Recordify isn't released yet. These are the rules they're being built to.

Responsible disclosure

Found a vulnerability?

We welcome good-faith security research. If you find something, tell us — we'll take it seriously and fix it. We will not take legal action against good-faith reports. Please give us a reasonable window to fix the issue before sharing it publicly.

support@recordify.com

Want the formal version? Read the privacy policy — it covers the full picture. For anything that isn't a security issue, head to support.