Privacy Policy

Last updated: February 2026

This Privacy Policy describes how osb ("we", "us", "our") handles information in connection with Naidis, including the Obsidian plugin and the Naidis mobile app (collectively, "the Software").

Our Commitment

The Obsidian plugin is local-first. Your notes, highlights, and personal content never leave your device.

The mobile app syncs clip data (URLs and metadata) through our API to enable cross-device access. No note content is stored on our servers.

What We Don't Collect

Data Type	Collected?
Your notes	Never
Your highlights	Never
Your PDF content	Never
Your YouTube transcripts	Never
Your AI conversations	Never
Usage analytics	Never
Telemetry	Never
Crash reports	Never

What We Do Collect

Mobile App Data

When you use the Naidis mobile app, the following data is collected and stored on our servers:

Data	Purpose	Stored By
Email address	Account authentication (magic link login)	osb (our API server)
Clip URLs	Sync saved clips across devices	osb (our API server)
Clip metadata (title, site name)	Display clip information	osb (our API server)
Authentication tokens	Session management	Device (SecureStore)

We do not store the full content of clipped pages — only the URL and basic metadata.

Subscription Data

When you subscribe to Naidis Pro, the following data is processed:

Data	Purpose	Processed By
Subscription ID	Verify active subscription	osb (our API server)
Customer ID	Link subscription to account	Lemon Squeezy / Stripe
Instance ID	Identify your plugin installation	osb (our API server)

We do not collect or store your payment information (credit card, bank details, billing address). All payment data is handled exclusively by our payment processors (see below).

Payment Processing (Lemon Squeezy / Stripe)

We use Lemon Squeezy (primary) and Stripe, Inc. for payment processing. When you purchase a subscription, the payment processor collects and processes:

Data	Purpose
Name	Payment processing
Email address	Receipts, subscription management
Payment method (card, etc.)	Process charges
Billing address	Tax calculation
Transaction history	Invoicing, refunds

This data is collected and stored by the payment processor, not by us. See Lemon Squeezy's Privacy Policy and Stripe's Privacy Policy.

Data Storage

Your Content (Obsidian Plugin)

All your Obsidian data is stored:

In your local Obsidian vault
On your file system
Under your complete control

Your Clips (Mobile App)

Clip URLs and metadata are stored on our API server (Cloudflare Workers) to enable sync. Full page content is not stored.

Subscription Verification

Our API server (hosted on Cloudflare Workers) stores only:

Subscription ID, status, and plan type
Customer ID and instance ID
Subscription period dates

This data is used solely to verify whether your subscription is active. No content data is ever transmitted or stored.

AI Processing

When you use AI features:

Queries are processed by Ollama running locally on your machine
Nothing is sent to external AI services
Your prompts and responses stay on your device

External Services (Optional)

If you choose to enable integrations:

Wallabag/Hoarder/Readwise: Data goes to those services, not us
Todoist/Google Calendar: Data goes to those services, not us

We act as a bridge. We don't store or intercept this data.

Third-Party Services

Service	Purpose	Data Shared
Lemon Squeezy	Payment processing	Payment info, email, billing address
Stripe	Payment processing (legacy)	Payment info, email, billing address
Cloudflare	API hosting	Clip sync, subscription verification
YouTube (via yt-dlp)	Transcript extraction	Video URLs (processed locally)

PDF Processing

All PDF processing happens locally using local libraries (pdf-extract, tesseract). No cloud services are involved.

Your Rights

You have complete control over your data:

Access: All your content is in your vault. You already have it.
Export: Your notes are standard markdown files.
Delete: Delete your vault, and all Naidis content data is gone.
Portability: Take your vault anywhere. No vendor lock-in.
Subscription data: Contact [email protected] to request deletion of your subscription records.

You have the right to access, rectify, erase, restrict processing, and port your personal data. Since we store minimal data (subscription verification only), most of your data is already under your control. For subscription-related data held by Stripe, contact Stripe directly or reach out to us at [email protected].

Data Security

Since your content never leaves your device:

We cannot have a data breach of your content
We cannot be compelled to hand over your notes
Your privacy is protected by architecture, not policy

Subscription data on our API server is protected by Cloudflare's infrastructure security.

Data Retention

Your content: Stored locally, retained as long as you keep it
Subscription data: Retained for the duration of your subscription plus 90 days after cancellation for billing and support purposes
Payment data: Retained by Stripe per their retention policy

Email: [email protected]
Website: https://naidis.dev

Summary

Question	Answer
Do you see my notes?	No
Do you track my usage?	No
Is my Obsidian data safe?	Yes, it never leaves your device
What about mobile app data?	Clip URLs and metadata sync to our servers
What do you store?	Subscription info + clip metadata (mobile)
Who processes payments?	Lemon Squeezy / Stripe
Can I verify this?	Yes, naidis-core is open source

Local-first isn't just a feature. It's a promise.

Privacy Policy

Privacy Policy

Our Commitment

What We Don't Collect

What We Do Collect

Mobile App Data

Subscription Data

Payment Processing (Lemon Squeezy / Stripe)

Data Storage

Your Content (Obsidian Plugin)

Your Clips (Mobile App)

Subscription Verification

AI Processing

External Services (Optional)

Third-Party Services

PDF Processing

Your Rights

Data Security

Data Retention

Children's Privacy

Changes to This Policy

Contact

Summary

On this page