At the moment, users essentially have to rely on trust and assume that the statements made in the Terms of Service and Privacy Policy are accurate, without any external evidence or independent certification to support them, even when features are described as “100% on-device.”

I do not believe that Bevel is violating or misusing these commitments. However, given that the application handles sensitive and important data, obtaining an independent certification or third-party verification would be reassuring and would further strengthen user trust.