The notes I take sometimes contain PII (personally identifying information) about other people, sometimes notes about things I'm investigating for someone that they would be distressed to find had ended up "on the internet", and sometimes commercial secrets (about jobs, clients etc that they share with me under NDA). And I'm just a lowly programmer and dogsbody doing random client work.
Now consider a therapist finds your product useful for their personal notes, and doesn't realise what they are getting into.
> I do not think that we host the kind of data that a hacker would like to acquire
Hackers don't tend to go for data they would find valuable themselves.
They go for data the author of the data finds valuable for themselves (which notes may be by definition), or just as likely, specifically don't want anyone else to read. An example of the former is all those ransomware attacks. An example of the latter is the above link to the private notes blackmail incident.
"Usually".
The notes I take sometimes contain PII (personally identifying information) about other people, sometimes notes about things I'm investigating for someone that they would be distressed to find had ended up "on the internet", and sometimes commercial secrets (about jobs, clients etc that they share with me under NDA). And I'm just a lowly programmer and dogsbody doing random client work.
Now consider a therapist finds your product useful for their personal notes, and doesn't realise what they are getting into.
That would end up a small version of this awful incident: https://news.ycombinator.com/item?id=24886039
> I do not think that we host the kind of data that a hacker would like to acquire
Hackers don't tend to go for data they would find valuable themselves.
They go for data the author of the data finds valuable for themselves (which notes may be by definition), or just as likely, specifically don't want anyone else to read. An example of the former is all those ransomware attacks. An example of the latter is the above link to the private notes blackmail incident.