No account needed. Works offline. Every entry encrypted on your phone before anything leaves the device. No ads. No social feed. No leaderboards. Your diary, your eyes only.
Most "private" diary apps are PIN-locked plaintext SQLite. Reflect treats privacy as the default, not the marketing line.
Sign-up is anonymous and optional. There's no email collection, no contacts permission, no friends to follow. Journal content is never transmitted unless you opt into encrypted cloud backup, and anonymous analytics are a single toggle to disable.
Airplane mode works perfectly. The app is fully usable with no network. Entries write to encrypted local storage and stay there. Sync only happens if you turn it on, and only with the encrypted backup path.
AES-256-GCM with HMAC tamper detection. Biometric, PIN, or password lock on top of that. Auto-lock on background, hidden preview thumbnails, and a lock independent of the device passcode.
Everything lives on your device first. Cloud backup is optional, encrypted, and zero-knowledge — meaning our servers see ciphertext only. Export as PDF or JSON whenever you want, and delete your account in a single tap with no retention period.
Biometric, PIN, or password — and an auto-lock the moment you switch apps. Preview thumbnails are hidden by default so the app icon on your phone reveals nothing. The lock is independent of the device passcode.
No. You can use Reflect entirely offline, with no account, and nothing leaves your phone. An account is only required if you choose to enable encrypted cloud backup or cross-device restore.
Only if you opt in. By default, entries live on your device, encrypted with AES-256-GCM. Cloud backup is a separate setting; when you turn it on, entries are encrypted before they leave your phone, with a key derived from your recovery code.
No. Reflect's storage is sandboxed by iOS and Android, and the entry contents are encrypted on disk. The biometric or PIN lock also blanks the app-switcher preview, so a glance at your phone doesn't reveal anything.
Settings has a one-tap export to PDF or JSON — you can save a complete copy whenever you want. Account deletion is also in settings and wipes both local entries and any cloud backup. There are no holds or hidden retention periods.
Free, in 10 languages, on iOS and Android. No account required. Encrypted from the first entry.