Privacy Policy

Last updated: February 24, 2026

Nura ("we," "us," or "the app") is an AI-powered meeting notes application developed by LMFI. This Privacy Policy explains how we collect, use, store, and protect your information when you use Nura on iPhone, iPad, or Mac. By using Nura, you agree to the practices described in this policy.

1. Information We Collect

Account Information

When you sign in with Google or Apple, we receive your name and email address (and profile photo, if using Google). This information is used to identify your account and sync your data across devices.

Meeting Notes & Content

Your meeting notes, transcripts, AI-generated summaries, tasks, and notebooks are stored on your device using SwiftData and synced through Firebase Firestore to enable access across your devices.

Audio Recordings

When you record a meeting, audio is processed on-device using Apple's Speech framework for transcription. Audio files are stored locally on your device and are not uploaded to our servers.

Calendar Data

If you enable calendar integration, Nura reads your upcoming events from Apple Calendar (via EventKit) and/or Google Calendar (via the Google Calendar API). Calendar data is used solely to display upcoming meetings within the app and is not stored on our servers.

AI Processing Data

When you use AI features (summaries, action items, speaker identification), your note content is sent to Anthropic's Claude API for processing. This is done through a secure server-side proxy. Anthropic does not use your data to train their models, as stated in their data usage policy.

Usage Data

We track basic usage metrics (AI call counts and token usage) to enforce free-tier limits and manage subscriptions. We do not use third-party analytics SDKs or tracking tools.

2. How We Use Your Information

We use the information we collect for the following purposes:

• To provide and maintain the app's core functionality
• To sync your notes and settings across your devices
• To display your upcoming calendar events
• To generate AI-powered summaries and action items
• To authenticate your identity via Google Sign-In or Sign in with Apple
• To manage your subscription and enforce usage limits
• To communicate important service updates or changes

We do not use your data for advertising, profiling, or any purpose unrelated to providing the app's functionality.

3. Data Storage & Security

We take the security of your data seriously and employ the following measures:

• Local storage: Your notes are stored on-device using SwiftData with device-level encryption provided by iOS/macOS.
• Cloud sync: Firebase Firestore uses encryption in transit (TLS) and at rest for all synced data.
• Authentication: Handled by Firebase Auth with Google OAuth 2.0 or Sign in with Apple — we never see or store your password.
• API keys: Any keys stored on-device use the iOS/macOS Keychain for secure storage.
• AI processing: Note content sent to Anthropic's Claude API is transmitted via HTTPS through a server-side proxy. We do not log or retain the content of AI requests.

4. Third-Party Services

Nura uses the following third-party services, each with its own privacy policy:

• Firebase (Google) — Authentication and cloud data sync — Privacy Policy
• Google Sign-In — Account authentication — Privacy Policy
• Sign in with Apple — Account authentication — Privacy Policy
• Google Calendar API — Calendar event access (read-only, with your permission)
• Anthropic Claude API — AI-powered note processing — Privacy Policy
• Apple EventKit — Device calendar access (with your permission)
• Apple Speech Framework — On-device audio transcription

We encourage you to review the privacy policies of these services.

5. Data Sharing

We do not sell, rent, or share your personal information with third parties for marketing or advertising purposes. Your data is only shared with the third-party services listed above, solely to provide the app's functionality.

We may disclose your information if required to do so by law or in response to valid legal requests by public authorities (e.g. a court order or government agency).

6. Your Rights & Controls

You have the following controls over your data:

• Calendar access: You can toggle Apple Calendar and Google Calendar access on or off independently in app settings at any time.
• Google permissions: You can revoke Google Calendar permissions from your Google Account settings.
• Account deletion: You can delete your account and all associated server-side data from within the app (Settings > Delete Account).
• Note management: You can export or delete individual notes at any time.
• Microphone access: You can revoke microphone permission from your device's system settings.

For users in the European Economic Area (EEA) and UK

Under the General Data Protection Regulation (GDPR) and UK GDPR, you have additional rights including the right to access, correct, delete, or port your personal data, and the right to object to or restrict processing. Our legal basis for processing your data is the performance of our contract with you (providing the app's functionality) and your consent (for optional features like calendar access). To exercise any of these rights, contact us at hello@nuranote.com.

For users in California

Under the California Consumer Privacy Act (CCPA), you have the right to know what personal information we collect, request deletion of your data, and opt out of the sale of personal information. We do not sell your personal information. To exercise your rights, contact us at hello@nuranote.com.

7. Data Retention

Your data is retained for as long as you have an active account. When you delete your account:

• All associated data is permanently removed from our servers (Firebase Firestore and Firebase Auth) within 30 days.
• Data stored locally on your device remains until you uninstall the app.
• Data that has already been processed by third-party AI services is not retained by those services beyond their stated processing windows.

8. International Data Transfers

Your data may be processed in countries outside your country of residence, including the United States (where Firebase and Anthropic servers are located). We ensure appropriate safeguards are in place for these transfers in compliance with applicable data protection laws.

9. Children's Privacy

Nura is not intended for children under 13 (or under 16 in the EEA). We do not knowingly collect personal information from children under these ages. If we become aware that a child has provided us with personal information, we will take steps to delete such information promptly.

10. Data Breach Notification

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify affected users without undue delay and no later than 72 hours after becoming aware of the breach, in compliance with applicable laws. We will also notify the relevant supervisory authorities as required.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by updating the "Last updated" date at the top of this page. If changes are significant, we will make reasonable efforts to notify you through the app or by other means. Your continued use of Nura after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this Privacy Policy or wish to exercise your data rights, contact us at hello@nuranote.com.