Privacy Policy
Last updated: February 12, 2026
The short version: Your notes are yours. We encrypt them, we don't read them, we don't sell your data, and you can download or delete everything at any time.
Your data, your ownership
Daymark exists to host your notes — not to monetize them. You retain full ownership of everything you create. You can export all your notes, folders, and attachments as a zip file at any time from your profile settings. If you leave, your data goes with you.
Encryption
Every note is encrypted at rest using AES-256-GCM with a unique per-note key. Your note content is never stored in plaintext on our servers. Encryption keys are derived from your account and are not accessible to Daymark staff.
Authentication
Daymark supports Google Sign-In and passwordless magic link authentication. We never store passwords because we never ask for one. Google authentication tokens are validated server-side and are not stored after verification.
What we collect
We collect only what's necessary to provide the service: your email address, display name, notes, folders, and any files you attach. If you connect a calendar, we store an access token to sync your events — we only request read-only access.
What we don't do
We don't display ads. We don't sell or share your personal data with third parties. We don't use your content to train AI models. We don't track you across the web. We don't embed third-party analytics or tracking scripts.
Payments
Subscriptions are processed by Stripe. Daymark never sees or stores your full credit card number. Stripe's privacy policy applies to payment processing.
Calendar integration
If you connect Google Calendar or Microsoft Outlook, we request read-only access to display your upcoming events alongside your notes. We store only the OAuth tokens needed to sync. You can disconnect at any time.
Data retention
Your data is retained as long as your account is active. Deleted notes are soft-deleted and permanently removed after 30 days. If you delete your account, all associated data is permanently removed from our servers.
Where your data lives
Daymark is hosted on infrastructure in the United States. All connections are encrypted in transit via TLS.
Contact
Questions about this policy? Reach us at privacy@daymark.work.