Editorial illustration for Granola notes are publicly accessible via link, even without login
Granola Notes Leak: Public Access Without Login
Granola notes are publicly accessible via link, even without login
Why should a simple share link matter? Granola markets its notes as easy to reference, yet the default sharing setting appears to bypass any login requirement. In practice, anyone who stumbles upon a URL can pull up the associated note, see the author’s name and the creation timestamp, and do so from a private browsing session.
While the platform hides the full transcript attached to the note, the basic content is still exposed. This behavior raises questions about how Granola handles privacy by design, especially for users who assume a private window offers a layer of secrecy. The following observation from a hands‑on test illustrates exactly how the system behaves when the link is accessed without authentication.
After testing this out for myself, I found that I could access my own note from a private window in my browser, all without signing into my Granola account. The site even tells you who the note belongs to and when it was created. While I couldn't view the entire transcript linked to the note, I could still view parts of it.
Selecting one of the bullet points generated by Granola pulls up a quote from the transcript that the note is referring to, along with an AI-generated summary with additional context about the conversation. On its website, Granola says "full transcript access is available to collaborators who open the same folder or note inside the Granola desktop app." It's not clear whether anyone with a Granola account can access your transcript, or if it's just people you've shared your workspace with. Granola didn't respond to a request for more information by the time of publication.
You can change who can view your links by opening Granola, selecting your profile in the bottom-left corner of the screen, and then choosing "Settings." From there, navigate to the "Default link sharing" option, and change "Anyone with the link" to either "Only my company" or "Private." If you delete your note, people with the link will no longer be able to access it. One user on LinkedIn called attention to the public notes setting last year, saying, "these links aren't indexed, but if you share or leak one - even accidentally - it's public to whoever finds it." And at least one major company has denied use of the tool to a senior executive due to security concerns, a source tells The Verge. Additionally, Granola "may use anonymized data" to improve its AI models, according to the app's support page.
Is your notebook really private? Granola says notes are private by default, yet a simple link reveals the content to anyone who clicks it. The test showed a note opening in a private browser window without any login, and the page even displayed the author’s name and creation date.
However, the full transcript remained hidden, suggesting partial exposure. Because the app also enables internal AI training for non‑enterprise users unless they opt out, data may be used beyond the user’s immediate view. Users must therefore verify their privacy settings and actively disable link sharing if confidentiality matters.
It’s unclear how many users are aware of this default behavior or how Granola communicates the opt‑out process. The company’s stance that notes are “private by default” conflicts with the observable link‑based accessibility, raising questions about the consistency of its privacy promises for users. Until Granola clarifies the mechanics and offers clearer controls, relying on the default configuration may expose personal notes unintentionally.
Further Reading
- Product Hunt - AI Tools - Product Hunt
- There's An AI For That - TAAFT
Related Reading
AI Tools & Apps Claude Code 2.1.0 launches with smoother workflows, smarter agents for power users
AI Tools & Apps Build a Smart AI Voice Assistant Quickly with Vapi: Step-by-Step
AI Tools & Apps Demystifying AI Workflows: 7 Tools That Boost Transparency and Efficiency
From Archives Intuit's AI agents achieve 85% repeat usage via human‑involved dashboard
From Archives Google Antigravity Skills and Workflows Aim to Streamline AI Agent Development
Common Questions Answered
How do Granola's note sharing links compromise user privacy?
Granola's sharing links allow anyone to access basic note details like the author's name and creation timestamp without requiring login credentials. Even in a private browsing session, users can view parts of the note's content and selected bullet points, potentially exposing sensitive information to unintended viewers.
What content remains visible when accessing a Granola note via a shared link?
When accessing a Granola note through a shared link, users can see the note's author, creation timestamp, and selected bullet points or quotes from the transcript. However, the full transcript remains hidden, providing partial but potentially revealing content about the note's subject matter.
What privacy concerns arise from Granola's default note sharing settings?
Granola's default sharing mechanism allows anyone with a note's URL to access basic information and content fragments without authentication. This raises significant privacy concerns, as users may inadvertently expose note details to unauthorized individuals, potentially compromising the confidentiality of their notes.