← Back to Raven

Privacy Policy

Privacy Policy

Last updated: April 15, 2026

Raven is a local-first Markdown notes app for iPhone and Mac. This policy explains what Raven processes, how it is used, and the choices you have.

1. What Raven collects

Depending on which features you use, Raven may process:

  • Account identifiers, including your Sign in with Apple user identifier.
  • Your note content, including note titles, bodies, paths, frontmatter, previews, and sync metadata.
  • Device and sync information, including device identifiers, platform information, optional device labels, and session metadata.
  • Authentication and session information, including Raven session records and Apple refresh tokens encrypted at rest on Raven’s server.
  • Purchase or entitlement information, including App Store transaction identifiers and related entitlement metadata used to verify paid access.

2. How Raven uses information

Raven uses this information to:

  • sign you in with Apple if you enable cloud sync,
  • sync notes across your devices,
  • keep note history and deletion state consistent across devices,
  • detect and resolve sync conflicts,
  • verify app purchase or entitlement state,
  • support account deletion and session revocation, and
  • operate and secure the service.

Raven does not use your information for advertising, tracking, or third-party analytics.

3. Where your information is stored

Local storage on your device

Raven stores your notes locally as plain Markdown (.md) files on your device.

Server storage for cloud sync

If you enable cloud sync, Raven stores synced note content and related account/sync metadata on Convex-hosted infrastructure.

Raven does not currently offer end-to-end encryption. Synced note content is stored server-side in a form Raven can process to provide sync functionality.

4. Who can access your information

Your information may be accessible to:

  • you, on devices where you use Raven,
  • Raven’s developer, as needed to operate and maintain the service,
  • service providers that help operate Raven’s infrastructure, such as Convex,
  • Apple, when you use Sign in with Apple or App Store purchase verification, and
  • law enforcement or other third parties if required by law.

5. Data retention

  • Active synced notes and account data are retained until you delete them or delete your account.
  • Deleted-note tombstones may be retained for up to 90 days so other devices can observe and sync deletions correctly.
  • Mutation and idempotency logs may be retained for up to 7 days for sync reliability and replay protection.
  • Inactive devices may be treated as inactive after extended non-use for sync cleanup logic.

6. Account deletion

If you create a Raven account through Sign in with Apple, you can delete your account in the app.

Account deletion is designed to:

  • revoke active Raven sessions,
  • revoke the Sign in with Apple refresh token used by Raven, and
  • delete synced server-side account and note data associated with your Raven account.

Account deletion does not delete local Markdown files already stored on your device. Those files remain under your control unless you delete them yourself.

7. Third parties

Raven currently relies on:

  • Convex for backend and sync infrastructure, and
  • Apple for Sign in with Apple and App Store purchase/entitlement infrastructure.

Raven does not directly connect your notes to third-party AI services by default. Because your notes are plain Markdown files in folders you control, you may choose to use them with third-party tools yourself. If you do, that use is governed by those third parties’ terms and privacy policies.

8. Diagnostics

Raven does not currently include a third-party analytics SDK, advertising SDK, or crash-reporting SDK. Apple may process diagnostics or crash information if you choose to share diagnostics through your Apple device settings.

9. Children’s privacy

Raven is not directed to children under 13, and Raven does not knowingly collect personal information from children under 13.

10. Your choices

  • You can use Raven locally without enabling cloud sync.
  • You can choose whether to sign in with Apple for synced features.
  • You can delete notes locally on your device.
  • You can delete your Raven account in-app if you have enabled cloud sync.
  • You can manage purchases and refunds through Apple.

11. Security

Raven uses reasonable measures to protect information processed by the service. However, no service can guarantee absolute security. Because Raven does not currently provide end-to-end encryption for synced content, you should not assume synced notes are unreadable to the service operator.

12. Changes to this policy

Raven may update this Privacy Policy from time to time. If material changes are made, Raven will update the effective date and may provide notice in the app or on the Raven website.

13. Contact

Raven is operated by Matoya Pty Ltd. For privacy questions, contact thomas@ravennotes.app.