What does 'your data stays on your device' actually mean?

"Your data stays on your device" is used as a privacy claim by a growing number of health apps. It's a meaningful statement — but it's worth understanding exactly what it means technically, what it guarantees, and where its limits are.

What it means technically

Modern browsers provide storage APIs that allow web applications to save data directly in your browser, on your device. The two main ones are localStorage (simple key-value pairs, up to around 5–10MB depending on the browser) and IndexedDB (a more capable database for larger datasets).

When an app uses these APIs and makes no network requests, your data is stored only in your browser's storage. It never leaves your device — not to the app developer's servers, not to analytics platforms, not to advertising networks. The data is as local as a file saved to your hard drive.

What it actually guarantees

If implemented correctly, local-only storage means:

• The app developer cannot access your data — they have no copy of it
• If the company shuts down, your data is unaffected
• A data breach at the company cannot expose your health information
• No one can sell your data because no one has it

It also means the app works offline — because it doesn't need a server to function.

The limits

Local storage is tied to the browser and device. If you clear your browser data, your app data is also cleared. If you lose your device without a backup, your data is gone. If you switch browsers, the data doesn't follow you automatically.

This is why any app making a local-first claim should also provide easy data export — so you have a copy you control. An export file in a standard format (like JSON) means your data isn't locked into the app at all. You can open it, read it, or import it elsewhere.

How to verify the claim

You can verify that an app makes no network requests using your browser's developer tools (Network tab). Open the app, use it normally, and watch whether any requests appear. A genuinely local-first app shows nothing. Any requests — even to analytics platforms — indicate that data or metadata is leaving your device.

A single-file app (one HTML file that you download and open locally) is a stronger guarantee than a hosted web app, because the code itself is on your device and can't be updated without your knowledge to add data collection.