Privacy is not a setting.
It's the architecture.

Talkie is built so unfinished thoughts stay on your devices by default. Your library lives locally, sync can run through your iCloud, transcription can stay on device, and external providers are opt-in with your own keys.

Security Architecture

Data Sovereignty Model v1.2
Input (iOS)
Processing (macOS)
Services
User Owned Zone

iCloud

Encrypted CloudKit Container

iPhone

Input Context
1. Audio Capture (VAD)
2. Local Encryption
3. Sync Push

Mac

Runtime Details
1. Context Assembly
2. PII Redaction
3. Secure Dispatch
External Services
OpenAIOpenAI
AnthropicAnthropic
GoogleGoogle
NotionNotion
ZapierZapier
LinearLinear

Outbound: Text-Only Stream

Only the final, sanitized text prompt is sent. Audio files never leave your device.

Local-First Storage

SQLite Database

Your data lives in a local SQLite database file on your device's encrypted disk. It is not just 'cached' locally; it is authoritative locally. Deleting the app deletes the data.

Apple iCloud Sync

Zero-Knowledge Architecture

We use Apple's CloudKit for sync. Your data is encrypted with keys managed by your Apple ID. We (Talkie Systems) have no access to these keys and cannot decrypt your data.

On-Device Transcription

Neural Engine Path

Transcription can stay 100% on device using Apple silicon. For later transformations, you can keep using local models or opt into external providers only when you choose to.

External Providers Are Opt-In

Selective Disclosure

When you use an external provider, audio can stay on your device and only the text you choose to send leaves the machine. That keeps the trust boundary clear.

Audit Trails

Full Transparency

Every network request initiated by a workflow is logged in a local, immutable audit trail. You can inspect exactly what text was sent to which API and when.

BYO API Keys

Secure Keychain Storage

If you use OpenAI, Anthropic, or another provider, you bring your own keys. They are stored in the macOS Keychain and accessed only at runtime to sign requests.

Vendor Isolation & Custody

Understanding who holds the keys to your data is critical. We utilize Apple's "Private CloudKit Container" architecture, which structurally segregates your data from us.

Apple Docs: Private DB Privacy Apple Docs: Data Encryption
No Access

Talkie Systems Inc.

(The Vendor)

We publish the app binary to the App Store.

We push updates and bug fixes.

Cannot Decrypt Data
One-Way Delivery
App Store Binary
Wall of Separation
User Data
Full Custody

You & Apple ID

(The Data Owner)

Your devices generate the encryption keys.

Data resides in your Private CloudKit Database.

Only your authenticated devices can read it.

Sole Proprietor

Advanced Data Protection Ready

Total Decryption Immunity. Even from Apple.

Talkie fully supports Apple's optional Advanced Data Protection for iCloud. Because we utilize standard CloudKit Private Databases, enabling ADP in your Apple ID settings automatically extends strict end-to-end encryption to your Talkie data.

Keys stay with you

Encryption keys are stored only on your trusted devices, not on iCloud servers.

Zero Server Access

Neither Apple nor Talkie Systems can decrypt your data, even under warrant.

Learn about ADP
Feature
Talkie
Hosted AI Apps
Audio Processing
Local (Neural Engine)
Cloud Server
Database Location
Local Disk + iCloud
Vendor's Cloud SQL
Offline Access
100% Full Functionality
Limited / None
Model Training
Never
Default Opt-in
API Key Ownership
User Owned
Vendor Owned

We don't run a cloud that stores your library.

By design, Talkie is built around local storage, iCloud custody, and provider choice. That keeps your memos, transcripts, and unfinished thoughts on your side of the line.