This Privacy Policy explains how Enclo ("Enclo," "we," "us"), a product of Stremit Technology Solutions, handles information when you use the Enclo mobile and desktop application (the "App").
Enclo is built to be local-first: your conversations, links, notes, and files are stored in a private database on your own device. Enclo does not operate a central server that stores your vault contents. Where the App does send data over the network — for AI features, the Discover catalog, device pairing, or anonymous analytics — those flows are described below.
1. Information stored only on your device
- Vault data. Saved chats, links, notes, tags, and attached files are stored in a local database on your device. This data is never uploaded to any Enclo-operated server.
- App Lock. If you enable App Lock, authentication (fingerprint, Face ID, face unlock, or device PIN/pattern/passcode) is handled entirely by your device's operating system. Enclo never receives, stores, or transmits your biometric data.
- Settings and preferences, including your API keys, are stored locally using your device's secure local storage.
2. Information used for AI features (you control this)
Enclo's AI features (chat replies, AI summaries, AI auto-reply drafts, Discover) work by sending the relevant text directly from your device to the Stremit API (stremit.io) using your Stremit API key:
- Stremit API. AI chat, AI summaries, the Discover tab, and other AI features call the Stremit API using your Stremit API key. Requests go directly from your device to Stremit. Enclo does not separately log or store the content of these requests. Stremit's handling of that data is governed by Stremit's own privacy policy.
- AI auto-reply (optional, off by default) reads the text of an incoming notification to draft a suggested reply via the Stremit API. The draft is placed in the reply field for you to review — Enclo never sends a reply on your behalf without you tapping send.
3. Information shared when you use CloShare or Sync
CloShare and Sync let you share items or keep a vault in sync with another device you control:
- Direct connections. When both devices are reachable on the same network (Wi-Fi/LAN) or via Bluetooth, data is sent directly between the two devices and does not pass through any Enclo server.
- Internet relay. When a direct connection isn't possible, Enclo's relay server forwards encrypted message frames between your two devices so they can connect over the internet. The relay server is a blind relay: it never decrypts or reads the content being exchanged, and idle pairing sessions expire automatically within minutes.
4. Anonymous analytics
Enclo uses Aptabase to collect anonymous, aggregate product analytics (such as which screens are opened or which features are used) to help us fix bugs and improve the App. This data:
- Does not include your name, email, vault contents, messages, files, or any other personal or identifiable content.
- Is not used for advertising or sold to third parties.
- Can be turned off at any time in Settings. Analytics is on by default and can be disabled with a single toggle.
5. Device permissions
Depending on the features you use, Enclo may request:
- Camera — to scan QR codes when pairing devices for CloShare.
- Bluetooth and nearby-device permissions — to discover nearby devices for CloShare/Sync. On Android, the operating system requires "location"-category permissions to perform Bluetooth scanning; Enclo does not access, track, or store your GPS location.
- Notifications — to enable optional features such as AI auto-reply, and to show the App's own notifications (e.g., sync status).
- Photos/media storage — to save images and videos you download to your device's gallery.
- Accessibility service ("Phone Control," optional, off by default) — lets a device you control read and interact with the screen of this device when you explicitly enable the feature and pair it with another device you own. This data only flows between your own paired devices and is never sent to Enclo.
- Display over other apps / overlay (optional, off by default) — used to show the floating control bubble for the Phone Control feature.
You can review and revoke any of these permissions at any time in your device's system settings.
6. Data retention and your choices
- Your vault data stays on your device until you delete it, uninstall the App, or use the in-app export/delete tools.
- You can export your library as JSON at any time from Settings.
- Removing an API key from Settings immediately stops Enclo from using it.
- Uninstalling the App removes its local data from your device (subject to your operating system's normal app-data handling).
7. Children's privacy
Enclo is not directed at children under 13, and we do not knowingly collect personal information from children under 13.
8. Changes to this policy
We may update this Privacy Policy as the App evolves. Material changes will be reflected by an updated "Effective date" above, and where appropriate, a notice inside the App.
9. Contact us
Questions about this Privacy Policy? Contact us at hello@stremit.io.