Your data is safe with us
We built Calenote with privacy-first principles. Here's exactly how we protect your information.
Passwords encrypted
bcrypt 12 rounds
HTTPS always
TLS on all connections
Zero ads
No advertisers
Data in South Asia
Mumbai, India region
Your notes are private
Your notes, to-dos, and reminders are stored in an encrypted MongoDB Atlas database. Only you can access your own data using your account credentials. Calenote team members cannot read your personal notes.
Passwords are never stored in plain text
When you create an account, your password is hashed using bcrypt (12 rounds) before storage. This means even if someone accessed our database, they cannot recover your password. We use industry-standard one-way hashing.
Secure connections
All data between your device and Calenote is transmitted over HTTPS/TLS. Your browser connection is encrypted end-to-end via Cloudflare's global CDN and Vercel's infrastructure.
Location data
Calenote uses your device's geolocation only to show local weather and sunrise/sunset times. Your exact coordinates are sent directly to Open-Meteo (a privacy-respecting free weather API) and are never stored on our servers.
We don't sell your data
Calenote does not sell, share, or trade user data with any third parties. We don't run ads. We don't share your information with advertisers. Your data is yours.
Delete your data
You can delete any note, to-do, or reminder at any time from within the app. To permanently delete your account and all associated data, email us at support@calenote.app.
Cookies & sessions
Calenote uses a single secure session cookie for authentication (NextAuth.js). This cookie expires when you sign out. No tracking cookies. No analytics tracking without consent.
Data location
Your data is stored in MongoDB Atlas (Mumbai region, ap-south-1). We chose Mumbai to keep data close to Nepal for faster performance and to keep your data within the South Asia region.