Privacy
Your study data is yours.
This policy explains what Smort processes, why it is needed, and what happens when you delete your Cloud account.
Last updated: July 16, 2026
What Smort collects
Smort may process account identifiers and the sign-in information you choose to use, such as an email address, phone number, or Apple or Google account identifier. Smort does not receive your Apple ID password or payment card details.
Your decks, cards, answers, review history, settings, and related study content are stored on your device. If you enable Smort Cloud, the content you choose to sync is also stored in our Supabase cloud service so it can be restored and kept consistent across your devices.
AI processing
When you ask Smort AI to create material or grade an ambiguous answer, the text needed for that request is sent through Smort's authenticated cloud gateway to OpenRouter and the selected model provider. Smort records limited operational data such as a pseudonymous account value, request type, status, latency, token counts, estimated cost, and safe error code. We do not put prompts, answers, account contact details, access tokens, or provider keys in our application logs.
If the optional personal OpenRouter-key feature is available and you choose to use it, the key is stored on your device and sent only for the request you initiate. It is not stored in Smort's database.
Speech and audio
Voice answers use Apple's Speech Recognition and audio frameworks when you grant permission. Apple controls whether speech recognition runs on-device or uses its services for the language and device configuration you select. Smort does not retain recordings on its cloud servers as part of the current voice-answer flow.
Subscriptions and usage
Apple processes purchases and billing. Smort receives signed transaction information, product and subscription status, renewal state, expiration dates, and an account-binding token so we can verify your plan and restore it to the correct Smort Cloud account. Smort records monthly AI usage and short-lived reservations to enforce the allowance shown in the app.
Future Studio Voice features, if launched, will receive a separate in-product disclosure before voice text is sent to a third-party speech provider. Generated audio will be cached so replaying it does not repeatedly send the same text for synthesis.
Service providers
Smort relies on Apple for app distribution, purchases, speech, and optional Apple sign-in; Supabase for authentication, database, and server functions; OpenRouter and model providers for requested AI operations; Google only if you choose Google sign-in; and email or SMS delivery providers only if those sign-in methods are enabled. Providers process data under their own terms and privacy policies.
Retention and deletion
You can delete your Smort Cloud account from the app. Account-owned cloud profiles, synced study data, consent records, and AI usage metadata are deleted with the account, except information we must retain for security, fraud prevention, legal obligations, or transaction integrity. For App Store purchases, Smort retains a minimal, account-detached transaction record so the same purchase cannot be claimed by multiple accounts. Local profiles remain on your device unless you delete them there.
Deleting a Smort Cloud account does not cancel an Apple subscription. Cancel or manage it in the app's Plan & Usage screen or in your App Store subscription settings.
Security and choices
Smort uses authenticated, account-scoped APIs, encrypted network transport, restricted server credentials, and server-side authorization. No system can guarantee absolute security. You can use core local study features without Smort AI, deny microphone or speech access, sign out of Cloud, or delete your Cloud account.
Children, changes, and contact
Smort is not directed to children under 13. We may update this policy as the product changes and will revise the date above. Questions or privacy requests can be sent to support@getsmort.app.