Privacy Policy

NoteTime is operated by NoteTime Pty Ltd, ACN 664 281 056, ABN 61 664 281 056, based in New South Wales, Australia. In this policy, "NoteTime", "we", "us", and "our" mean NoteTime Pty Ltd.

Contact us at support@notetime.ai.

• Account data: your name, email address, profile information, Google OAuth identifiers, and session information from WorkOS and Google.
• NoteTime content: notes, collections, tags, chats, AI prompts and outputs, saved source URLs, titles, domains, timestamps, highlights, article snapshots, transcripts, attachments, and related metadata.
• Extension data: when you use the extension, it may read and save the current page URL, page title, domain, selected text, page/article text, transcript text, highlights, and metadata needed to create or update your notes. The extension may request access across websites so it works where you use it. We do not intentionally save every page you browse.
• Analytics and diagnostics: product events, page views, browser and device data, account identifiers, and client/server errors. We use PostHog with autocapture and session recording disabled.
• Billing data: Stripe customer IDs, subscription status, plan, invoices, payment events, and billing metadata. Stripe handles card details.
• Support data: messages and files you send us when asking for help.

• To provide, secure, maintain, and improve NoteTime.
• To authenticate users and sync notes across the web app and extension.
• To save, search, export, and display your notes and source material.
• To generate AI summaries, answers, and related outputs you request.
• To manage subscriptions, trials, payments, taxes, and invoices.
• To monitor reliability, debug errors, prevent abuse, and enforce limits.
• To respond to support, privacy, legal, and deletion requests.

We do not use your notes, prompts, files, or other content to train AI models, and we do not sell your content or use it for advertising. AI features run only when you ask for them.

NoteTime uses the OpenAI API for AI features. To answer or summarize, we may send OpenAI your prompt, relevant notes, article or transcript text, source metadata, and recent chat history.

OpenAI says API data is not used to train or improve its models by default unless the customer opts in, and that API inputs and outputs may be retained for abuse monitoring for up to 30 days unless a different data retention setting applies. See OpenAI's data controls.

We do not sell your personal information or share it for third-party ads.

• WorkOS and Google for authentication.
• OpenAI for AI processing.
• PostHog for analytics and error diagnostics.
• Stripe for billing and subscription management.
• Hosting, database, storage, search, email, and security providers.
• Authorities, regulators, courts, or others where required by law.

Data accessed or collected by the NoteTime browser extension is handled in line with the Chrome Web Store User Data Policy, including the Limited Use requirements. We use it only to provide and improve the NoteTime features you choose to use. We do not sell it, use it for advertising, or use it to determine creditworthiness or for lending, and we do not transfer it to others except to the service providers above to operate NoteTime, where required by law, or as part of a merger, acquisition, or asset sale with notice to you.

Notes are private by default. If you turn on link sharing for a note, we create an unguessable link to a read-only copy of that note. Anyone who has the link can open it without signing in. The link is not restricted to specific people, so treat a shared note as visible to anyone you give the link to or who it is forwarded to.

A shared note shows its title and content, any saved source details, and your display name and handle. It does not show your email address. You can stop sharing at any time by setting the note back to private, which disables the existing link; sharing again creates a new link.

We use cookies, local storage, and similar technologies for login sessions, app preferences, extension connection state, security, analytics, and reliability. Some parts of NoteTime may not work if these are blocked.

The NoteTime browser extension stores data on your device, such as your sign-in state and preferences. It reads page content only when you act to save or take a note; it is not designed to record your general browsing. You can clear this data or remove the extension's access at any time by signing out or uninstalling the extension from your browser.

We are based in Australia. Some of our service providers are based in, or process data in, other countries — primarily the United States. Those countries may not have privacy laws that are substantially similar to Australia's.

Consistent with Australian Privacy Principle 8, we remain accountable for personal information we disclose to overseas recipients. The providers we use, what they do, and a link to each one's privacy terms are listed on our subprocessors page. By using NoteTime, you understand your information may be stored or processed outside Australia.

We keep account and content data while your account is active or as needed to provide NoteTime. You can export notes and close your account in Settings.

When you close your account, we delete or anonymise active account records, notes, chats, collections, profile data, usage records, and search index records. We aim to complete active-system deletion within 30 days. Some data may remain longer in backups, logs, billing/tax records, fraud prevention records, dispute records, or where legally required.

• You can access and edit your profile in Settings.
• You can export your notes from Settings.
• You can close your account from Settings.
• You can ask us for help with access, correction, deletion, or privacy questions at support@notetime.ai.
• If you are in Australia and are not satisfied with how we handle a privacy concern, you can contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.

Depending on where you live, you may have additional privacy rights. We will respond as required by applicable law.

We use reasonable technical and organisational safeguards, including authentication, access controls, encrypted transport, and provider security controls. No online service can guarantee perfect security.

If a data breach occurs that is likely to cause you serious harm, we will notify affected users and any regulator we are required to notify, without undue delay.

NoteTime is not for people under 16. We do not knowingly collect personal information from people under 16. If you believe this has happened, contact us so we can take appropriate action.

We may update this policy as NoteTime changes. If changes are material, we will take reasonable steps to notify users, such as updating this page or notifying users in-product.