Privacy Policy

Effective May 19, 2026

The short version

We collect no personal information about you. No name, email, phone, address, location, or contacts.
Your decks, cards, and review history live in your own iCloud account. We have no copy on a Discito server, because there is no Discito server.
All AI features (card generation, image generation, lecture transcription) run entirely on your device. No prompt or response is sent to us or to any third party.
The website has no signup form, no login, no cookies that identify you, and no third-party trackers.

1. What we collect ¶

Discito is built to collect as little as possible. Here is the complete list of data that ever leaves your device:

Anonymous crash reports (via Sentry)

When the app crashes or freezes, we receive a technical report so we can fix it. The report includes:

Device model (e.g. "iPhone 17 Pro")
iOS version (e.g. "26.5")
Discito version (e.g. "1.0.0 (762)")
An anonymous per-launch identifier that lets us tell whether two crashes came from the same session
The stack trace of the crash

The report does not include any of your cards, decks, review history, search queries, AI prompts, audio, transcripts, or any other content you've created in Discito. If you've disabled "Share With App Developers" or "Share iPhone Analytics" at the iOS system level (Settings → Privacy & Security → Analytics & Improvements), Discito honours that too — Apple's system-level toggle suppresses Sentry's crash uploads. A per-app opt-out toggle inside Discito's own Settings is on the roadmap for a future release.

Aggregate website analytics (via Cloudflare)

We use Cloudflare Web Analytics on discito.app to count page views and see which comparison pages people read. It's server-side only — no cookies are set in your browser and no per-visitor profile is built. We see totals; we never see you.

Apple StoreKit purchase verification

When you buy Discito Pro, Apple's StoreKit framework verifies the transaction with Apple's servers and gives Discito a signed entitlement token. We never see your Apple ID, your payment method, or your billing address. Apple's privacy policy covers the purchase transaction; Discito only receives a yes-or-no answer to "does this user own Pro?"

2. What we don't collect ¶

For the avoidance of doubt, Discito does not collect, transmit, or otherwise see:

The contents of any deck, card, or note you create or import
Your review history, FSRS scheduling state, streak count, or daily goal progress
Search queries you type into the app
Tags you apply to cards
Lecture audio recordings, transcripts, or any audio captured by the in-app recorder
AI prompts, AI-generated draft cards, AI-generated images, or any other AI input or output
Your location, contacts, photo library, calendar, or microphone audio (except as routed entirely on-device for lecture capture)
Your Apple ID, email address, name, phone number, or any other identifier
Cookies that identify you across browsing sessions on our website

3. Where your data lives ¶

All of your Discito content — decks, cards, images, audio, review history, settings, FSRS state — lives in your iCloud Drive container, identified as iCloud.app.discito.ios. This is a private container inside your own Apple ID; nobody at Discito can see inside it, and Apple does not give us access to it.

iCloud sync is free for every Discito user. It is not a Pro feature. If you have iCloud Drive enabled on your devices, Discito will sync automatically with no setup.

Deleting your data: uninstalling the app removes the local copy from that device. To delete the iCloud copy as well, open iOS Settings → [your name] → iCloud → Manage Account Storage → Discito and tap Delete Data. Because the data lives in your iCloud and not on our servers, only you (or Apple at your request) can delete it — we have no ability to do so on your behalf.

4. AI features ¶

Discito's AI features — card generation from PDFs and pasted text, AI image generation, lecture audio transcription, and smart quiz distractors — all run entirely on your device using Apple's Foundation Models, SpeechAnalyzer, and ImagePlayground frameworks. These are Apple Intelligence features that ship as part of iOS 26.

Nothing you give to those features (a PDF, a pasted text passage, an audio recording, a card front) is uploaded anywhere. There is no Discito AI server, no OpenAI API, no Anthropic API, no Google Cloud API. The model weights live on your device; the inference runs on your device's Neural Engine; the output stays on your device.

In the lecture capture feature, the optional "Keep source for re-generation" toggle (a Pro feature) saves the lecture's original audio bytes into your iCloud container, so you can regenerate cards from it later. That audio still never leaves your iCloud — it just gets stored in your private container instead of being discarded after transcription.

5. Third-party services ¶

The complete list of third parties that touch any Discito data:

Apple — iCloud (your data storage), StoreKit (purchase verification), Foundation Models / SpeechAnalyzer / ImagePlayground (on-device AI inference). Apple's handling of this data is covered by their own privacy policy.
Sentry — anonymous crash and freeze reports. See their privacy policy. System-level opt-out via Settings → Privacy & Security → Analytics & Improvements.
Cloudflare — web hosting for discito.app and aggregate, server-side, cookieless analytics. See their privacy policy.

That's the whole list. No advertising networks, no Google Analytics, no Facebook Pixel, no Mixpanel, no Hotjar, no Segment, no Amplitude. We don't sell, rent, or share any data with anyone, because there's nothing to share.

6. Children ¶

Discito is rated 4+ on the App Store and contains no age-restricted content. Because we don't knowingly collect personal information from anyone — adult or child — we have nothing to specifically remove for users under 13 (United States), under 16 (EEA), or under any other age threshold defined by your local law. If you believe a child has used Discito and you'd like to confirm that no data was retained on our side, please write to us at the address below; the answer will essentially always be "we never had any data to begin with."

7. Your rights ¶

Depending on where you live, you may have the right to access, correct, delete, restrict, or port the personal data a company holds about you (GDPR in the EEA, CCPA in California, similar regimes elsewhere). Because Discito does not collect personal data about you, there is nothing in our possession to access, correct, port, or delete on your request.

Where the underlying data does exist, here is who actually holds it and how to reach them:

Your decks, cards, and review history are in your iCloud. Manage them via iOS Settings → [your name] → iCloud → Manage Account Storage → Discito.
Your purchase record is held by Apple. Manage it via iOS Settings → [your name] → Subscriptions / Purchase History.
Your crash reports (only collected if you have iOS-level "Share With App Developers" enabled) are held by Sentry under our account. Write to us at hello@discito.app with your device model + approximate dates and we'll delete them.

8. Changes to this policy ¶

We may update this policy if our practices change or to clarify wording. When we do, the Effective date at the top will move forward and the new version will be posted here. For any material change — say, if we ever added a new third-party service or started collecting a category of data — we'll show an in-app notice the next time you open Discito, before the change takes effect.

9. Contact ¶

Questions, corrections, or just want to verify a claim on this page? Write to hello@discito.app. We answer real emails from real people.