Privacy is not a setting.
It's the architecture.

Talkie is built on a "Local-First" doctrine. We do not own servers that store your data. We do not train on your ideas. You own the keys, the database, and the AI models.

Security Architecture

Data Sovereignty Model v1.2
Input (iOS)
Processing (macOS)
Services
User Owned Zone

iCloud

Encrypted CloudKit Container

iPhone

Input Context
1. Audio Capture (VAD)
2. Local Encryption
3. Sync Push

Mac

Runtime Details
1. Context Assembly
2. PII Redaction
3. Secure Dispatch
External Services
OpenAIOpenAI
AnthropicAnthropic
GoogleGoogle
NotionNotion
ZapierZapier
LinearLinear

Outbound: Text-Only Stream

Only the final, sanitized text prompt is sent. Audio files never leave your device.

Local-First Storage

SQLite Database

Your data lives in a local SQLite database file on your device's encrypted disk. It is not just 'cached' locally; it is authoritative locally. Deleting the app deletes the data.

Apple iCloud Sync

Zero-Knowledge Architecture

We use Apple's CloudKit for sync. Your data is encrypted with keys managed by your Apple ID. We (Talkie Systems) have no access to these keys and cannot decrypt your data.

On-Device Intelligence

CoreML & MLX

Transcriptions occur 100% on-device using the Neural Engine. You can also download local LLMs (Llama 3, Mistral) to run full AI workflows without a single packet leaving your Mac.

Sanitization Barrier

Selective Disclosure

When using external models (like GPT-4), audio never leaves your device. Only the specific text prompt you construct is sent. You can redact PII before dispatch.

Audit Trails

Full Transparency

Every network request initiated by a workflow is logged in a local, immutable audit trail. You can inspect exactly what text was sent to which API and when.

BYO API Keys

Secure Keychain Storage

If you use OpenAI or Anthropic, you bring your own keys. They are stored in the macOS Keychain/Secure Enclave and are only accessed at runtime to sign requests.

Vendor Isolation & Custody

Understanding who holds the keys to your data is critical. We utilize Apple's "Private CloudKit Container" architecture, which structurally segregates your data from us.

Apple Docs: Private DB Privacy Apple Docs: Data Encryption
No Access

Talkie Systems Inc.

(The Vendor)

We publish the app binary to the App Store.

We push updates and bug fixes.

Cannot Decrypt Data
One-Way Delivery
App Store Binary
Wall of Separation
User Data
Full Custody

You & Apple ID

(The Data Owner)

Your devices generate the encryption keys.

Data resides in your Private CloudKit Database.

Only your authenticated devices can read it.

Sole Proprietor

Advanced Data Protection Ready

Total Decryption Immunity. Even from Apple.

Talkie fully supports Apple's optional Advanced Data Protection for iCloud. Because we utilize standard CloudKit Private Databases, enabling ADP in your Apple ID settings automatically extends strict end-to-end encryption to your Talkie data.

Keys stay with you

Encryption keys are stored only on your trusted devices, not on iCloud servers.

Zero Server Access

Neither Apple nor Talkie Systems can decrypt your data, even under warrant.

Learn about ADP
Feature
Talkie OS
Standard AI Apps
Audio Processing
Local (Neural Engine)
Cloud Server
Database Location
Local Disk + iCloud
Vendor's Cloud SQL
Offline Access
100% Full Functionality
Limited / None
Model Training
Never
Default Opt-in
API Key Ownership
User Owned
Vendor Owned

We don't want your data.

Running a secure cloud is hard. We chose not to. By architecture, we cannot see your memos, your transcripts, or your thoughts.