Last updated: May 2026
SealedFolio is built around local-first storage: your portfolio database and documents live on your device. We do not operate a cloud database for your properties, tenants, transactions, reports, or documents. Optional integrations can make network requests only when you configure or use them.
All data you enter into SealedFolio, properties, tenants, contacts, transactions, documents, and analytics, is stored locally on your computer in an encrypted SQLCipher database. Document attachments are encrypted with XChaCha20-Poly1305. Your master password derives the encryption key locally using Argon2id and is never transmitted anywhere.
Core portfolio tracking, reporting, document storage, and local AI extraction run on your device. Network activity is limited to features you activate or request, including license validation, optional Plaid bank import, optional map/geocoding views, optional model downloads for local AI, sample media downloads, update checks, and encrypted backup copies to a folder you choose.
When you activate a license, SealedFolio validates it with our licensing server. The validation sends your license key and a hashed device fingerprint used to tie the license to your machine. On first activation, your machine's hostname may also be sent. No portfolio data, financial data, document contents, or usage analytics are transmitted for license validation.
If you configure Plaid, SealedFolio uses the Plaid Link SDK and Plaid API to connect to your selected financial institution and retrieve transactions for review. Plaid and your financial institution process the information needed for bank linking under their own terms and privacy policies. Imported transactions are stored in your local encrypted SealedFolio database; we do not host a copy on SealedFolio servers.
The AI document scanning feature runs on your device. No document content is sent to an external AI API. If you choose to download a local model through the app, the model file is downloaded from its provider and then used locally.
This marketing website (sealedfolio.com) uses analytics and error-monitoring tools to understand how visitors find and use the site. These tools can use cookies and collect standard website telemetry. If you join the waitlist or contact us by email, we retain your email only to respond to your request or send launch updates. No personal financial data, property information, document contents, or desktop application data is transmitted by visiting the website.
Encrypted backups are created and stored at a location you choose on your device, external drive, or cloud-synced folder. SealedFolio does not operate a hosted backup service. If you place encrypted backups in Dropbox, iCloud Drive, Google Drive, OneDrive, or another provider, that provider stores the encrypted backup file but cannot read its contents without your SealedFolio master password.
We may update this policy from time to time. Changes will be posted on this page with an updated date.
Questions about this policy? Email us at [email protected].