Privacy Policy

Last updated: March 12, 2026

Honey Did ("the App") is built by Richard Scafidi. Given the sensitive nature of the information this App is designed to hold, privacy is foundational to its design. This policy explains exactly how the App handles your data.

The Short Version

Honey Did does not collect, transmit, or sell your personal data. Your information never leaves your device unless you explicitly export it. There are no accounts, no cloud sync, and no analytics.

Data Storage

All data you enter into the App is stored locally on your device in an encrypted format:

  • Desktop: An encrypted file in your operating system's application data directory, secured with AES-256-GCM encryption. The encryption key is stored in your OS keyring (macOS Keychain, Windows Credential Manager, or Linux secret service).
  • Android: An encrypted file in the app's private data directory with a locally stored encryption key.

No data is synced to any cloud service, remote server, or third party. The App is designed to function entirely offline.

Encryption

The App uses multiple layers of encryption:

  • Local storage: AES-256-GCM with Argon2id key derivation (64MB memory cost, 3 iterations, 4-way parallelism)
  • Exported files: AES-256-GCM with PBKDF2 key derivation (600,000 iterations)
  • Random salt and nonce are generated for every encryption operation
  • Passphrases are never stored — only verified against Argon2id hashes

Data Collection

The App does not collect:

  • Personal information (name, email, phone number)
  • Location data
  • Usage analytics or telemetry
  • Crash reports
  • Advertising identifiers
  • Cookies or tracking pixels

Network Connections

The App makes no network calls. The only external resource is Google Fonts, loaded for typography when the App starts. No user data is included in this request. You can use the App with no internet connection.

Exported Files

When you export your document, it is saved as a self-contained encrypted HTML file to a location you choose. This file contains your encrypted data and the decryption logic — no external connections are made when a recipient opens it. You are responsible for the storage and distribution of exported files.

Print Output

The App offers an optional unencrypted print-friendly output. This output contains your data in plain text. Handle printed copies with appropriate care.

Clear-on-Exit

The App includes an optional clear-on-exit feature that wipes all locally stored data when you close the App. When enabled, no data persists between sessions.

Children's Privacy

The App does not knowingly collect data from anyone, including children under 13.

Changes to This Policy

If this policy changes, the updated version will be published on this page with a revised date. Since the App collects no data, changes are unlikely.

Contact

Questions about this policy can be directed to richard@scafidi.dev.