Privacy Policy

Writa (“we”, “our”, or “us”) is operated by Orriginal. This Privacy Policy explains how we collect, use, store, and protect your information when you use the Writa application for macOS and the getwrita.com website (together, the “Service”).

By using Writa you agree to the practices described in this policy. If you do not agree, please do not use the Service.

1. Information We Collect

Account Information

When you create an account or sign in, we collect the information provided by your identity provider:

• Email address
• Display name
• Profile photo URL (if available)

Authentication is handled by Clerk. We do not store your password; Clerk manages all credential verification and OAuth flows (such as Sign in with Google or Apple).

Content You Create

Documents, tasks, workspaces, and any other content you create in Writa are stored locally on your device and, when you are signed in, synced to our cloud infrastructure so you can access your content across devices and collaborate with others.

Subscription & Purchase Data

All payments are processed by Apple through the App Store. We never receive or store your credit card or payment details. We receive transaction identifiers, product IDs, purchase dates, and expiry dates from Apple solely to verify your subscription entitlements.

Google Calendar Data

If you choose to connect Google Calendar, we request read-only access to your calendar events through a standard OAuth consent flow. Calendar event data (titles, times, descriptions, attendees) is fetched on demand and displayed in the Planner view. OAuth tokens are stored securely on our servers and are never shared with any other party. You can disconnect Google Calendar at any time from Settings.

Usage & Diagnostics

Writa does not use any third-party analytics or tracking services. We do not collect behavioural analytics, device fingerprints, or advertising identifiers. Crash reporting and basic diagnostics may be collected in the future, but only with your explicit opt-in consent.

2. How We Use Your Information

We use the information we collect to:

• Provide, operate, and maintain the Service, including cloud sync, collaboration, and the weekly planner
• Verify your identity and manage your account
• Process and validate your subscription entitlements via the Apple App Store
• Display your Google Calendar events when you have opted in
• Send transactional emails such as team invitations and account notifications
• Respond to support requests submitted through our contact form
• Improve and develop new features for the Service

We do not sell, rent, or share your personal information with advertisers or data brokers.

3. How We Store & Protect Your Data

Local Storage

Writa is designed as a local-first application. Your documents, tasks, and settings are stored on your device using Apple’s SwiftData framework. Sensitive credentials (such as authentication tokens) are stored in the macOS/iOS Keychain, which provides hardware-backed encryption at rest.

Cloud Storage

When you sign in, your content is synced to our cloud infrastructure hosted on Cloudflare. Data is stored in Cloudflare D1 (database) and R2 (file storage), both of which provide encryption at rest and in transit. All network traffic uses HTTPS/TLS encryption.

Security Measures

• All API requests are authenticated with signed JWT tokens
• Data is encrypted in transit (TLS) and at rest (Cloudflare infrastructure)
• OAuth tokens for third-party services are stored server-side and never exposed to the client
• Role-based access controls govern team collaboration and document sharing

4. Third-Party Services

Writa relies on the following third-party services to operate. Each has its own privacy policy governing how they handle data:

• Clerk — Authentication and identity management. Clerk Privacy Policy
• Cloudflare — Cloud hosting, database, and file storage. Cloudflare Privacy Policy
• Apple App Store — Subscription payment processing and transaction verification. Apple Privacy Policy
• Google — Calendar integration (only when you opt in). Google Privacy Policy

We do not embed any third-party analytics, advertising scripts, or tracking pixels in the app or on our website.

5. Sharing & Collaboration

When you share a document or invite someone to a team, the following data may be visible to collaborators:

• Your display name, email address, and profile photo within the team
• The content of shared documents, including real-time edits and cursor positions during collaborative sessions

Shared documents are access-controlled. Only users you explicitly invite or who are members of your team can view or edit shared content. Public share links provide read-only access to the specific document you choose to share.

6. Data Retention & Deletion

• Documents & content: When you delete a document it is moved to the trash. Trashed items can be restored or permanently deleted by you at any time.
• Account deletion: You can delete your account from the Account tab in Settings. This permanently removes your account, profile information, and all associated server-side data. Local data on your device remains until you remove the app.
• Team data: If you leave or are removed from a team, your access to that team’s content is revoked immediately.

If you would like us to delete all data associated with your account, you can do so from within the app or by reaching out through our contact page.

7. Cookies & Website Tracking

The getwrita.com website does not use cookies, localStorage, or any client-side tracking mechanisms. We do not run Google Analytics, Facebook Pixel, or any similar services. Standard server logs (IP address, request path, timestamp) may be recorded by our hosting provider for security and operational purposes.

8. Children’s Privacy

Writa is not directed at children under the age of 13. We do not knowingly collect personal information from children. If you believe a child has provided us with personal data, please contact us and we will promptly delete it.

9. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

• Access: Request a copy of the personal data we hold about you
• Correction: Request correction of inaccurate data
• Deletion: Request deletion of your data (see Section 6)
• Portability: Your documents are stored locally on your device and can be exported at any time
• Objection: Object to certain processing of your data

To exercise any of these rights, please contact us using the details below.

10. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will notify you by updating the date at the top of this page and, where appropriate, through the app or via email. Your continued use of the Service after any changes constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions about this Privacy Policy or how we handle your data, please get in touch via our contact page.