Privacy Policy

Last updated: March 22, 2026

UNSENT is built on a simple promise: your letters are yours alone. We don't read them, collect them, or share them with anyone.

What UNSENT Does

UNSENT is a private letter-writing app. You write letters that are never sent. They stay on your device unless you explicitly choose to back them up.

Data We Do Not Collect

We do not collect, store, or have access to:

Your letters or their contents
Your name, email, or any personal information
Your contacts or address book
Your location
Your browsing or usage analytics
Device identifiers for tracking purposes

Local Storage

All your letters are stored locally on your device using an on-device database. No account is required. No data is sent to any server by default.

Encrypted Backup (Optional, Pro)

If you choose to enable Encrypted Backup, your letters are encrypted on your device using AES-256-GCM encryption before being uploaded. The encryption key is derived from a 24-word recovery phrase that only you know.

We cannot read or decrypt your backed-up letters
The recovery phrase is never transmitted or stored by us
Backups are stored on our secure cloud infrastructure (Supabase)
You can disable backup and delete your data at any time

AI Features (Pro)

UNSENT offers optional AI-powered features including letter rewrites, emotional summaries, and weekly writing insights. When you use these features:

Your letter text is sent to a third-party AI provider (OpenRouter) for processing
The text is used only to generate the requested result and is not stored by the AI provider
We do not associate your letter content with any personal identity
AI features are entirely optional — the core app works fully offline

Biometric Lock (Pro)

UNSENT supports Face ID and Touch ID to lock your vault. Biometric data is handled entirely by Apple's operating system. We never access, store, or transmit any biometric information.

In-App Purchases

UNSENT Pro subscriptions are processed through Apple's App Store. Payment information is handled entirely by Apple. We do not have access to your payment details. Subscription status is managed through RevenueCat, which receives only an anonymous app user ID.

Third-Party Services

UNSENT uses the following third-party services:

Supabase — for optional encrypted backup storage
OpenRouter — for optional AI text processing
RevenueCat — for subscription management
Apple App Store — for payment processing

No personal data or letter content is shared with these services beyond what is described above.

Children's Privacy

UNSENT is not directed at children under the age of 13. We do not knowingly collect any information from children.

Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be reflected on this page with an updated date. Continued use of the app after changes constitutes acceptance of the updated policy.

Contact

If you have any questions about this Privacy Policy, you can reach us at:

info@unsent-app.com