Application: CoreNote
Developer: Clinicpoints Limited, Ireland ("Clinicpoints", "Company", "we", "us", or "our")
This Privacy Policy describes how CoreNote ("Application") handles information in connection with its use.
CoreNote has been designed as a privacy-first, offline business documentation application, and its architecture ensures that user data remains under the exclusive control of the user at all times.
By using the Application, you acknowledge and agree to the practices described in this Privacy Policy.
The Company does not collect, store, transmit, or process any personal data or business data from users.
Specifically:
- No account creation is required
- No names, emails, phone numbers, or identifiers are collected
- No audio recordings, transcripts, or business content are transmitted externally
- No usage analytics, tracking, or behavioural data is collected
- No crash reporting or diagnostic data is transmitted to the Company
The Company has no technical capability or access mechanism to view, retrieve, or monitor any user data processed within the Application.
All data generated through the use of CoreNote, including:
- Audio recordings
- Speech-to-text transcripts
- AI-generated business notes
- User preferences and settings
is processed and stored exclusively on the User's device.
This data is:
- Not transmitted to external servers
- Not accessible by the Company
- Not shared with any third parties
The Application operates entirely offline for its core functionality.
All locally stored data is secured using:
- Device-level encryption provided by the operating system
- Application-level safeguards where applicable
- Secure local database storage (SQLite-based)
The security of the data ultimately depends on the security of the User's device. Users are responsible for:
- Enabling device passcodes or biometric authentication
- Preventing unauthorized access
- Maintaining device integrity (e.g., avoiding jailbreaking or rooting)
The Application utilises on-device technologies, including:
- Google MedASR (Gemma-based models)
- NVIDIA Parakeet speech recognition models
- Apple Foundation Models (Apple Intelligence)
- SQLite local database systems
These technologies operate entirely on-device and do not transmit data externally during standard use.
The Company does not control or monitor internal processing performed by these models, and no data is shared externally as part of their operation within the Application.
All purchases, subscriptions, and billing are handled exclusively by Apple through the App Store.
The Company:
- Does not receive or store payment card details
- Does not have access to personal billing information
- May receive limited transaction status information from Apple solely to validate access to paid features
Any data processed by Apple is subject to Apple's own Privacy Policy.
The Application may request access to certain device features, including:
- Microphone access (for dictation and transcription)
- Biometric authentication (Face ID / Touch ID for app access control)
All such data is processed locally on the device and is not transmitted externally.
All data created within the Application remains stored on the User's device until:
- The User deletes it manually, or
- The Application is uninstalled
The Company does not retain any user data.
As the Company does not collect or store any personal data, it does not hold any data that can be accessed, modified, or deleted upon request.
Users retain full control over their data directly on their device.
If the Application is uninstalled, all associated data is removed in accordance with the device's operating system behaviour.
The Application is not intended for use by individuals under the age of 13.
The Company does not knowingly collect or process data from children. As no data is collected, no personal data relating to children is stored or processed by the Company.
While the Application is designed to operate with strong privacy protections, the Company is not responsible for:
- Data loss due to device failure
- Unauthorized access resulting from compromised devices
- User actions that expose or share data outside the Application
Users are responsible for maintaining appropriate security and backup practices.
The Company may update this Privacy Policy from time to time to reflect changes in legal requirements or the Application.
Any updates will be made available within the Application or through official distribution channels. Continued use of the Application constitutes acceptance of any updated Privacy Policy.
This Privacy Policy shall be governed by and construed in accordance with the laws of Ireland.
Clinicpoints Limited
Email: [email protected]
By using CoreNote, you acknowledge that:
- The Application does not collect or transmit personal or business data
- All data remains under your control on your device
- You accept responsibility for managing and securing your data
If you do not agree with this Privacy Policy, you must not use the Application.
Copyright © 2026 All rights reserved
