Encrypting the whole database could also help a bit with Provide messures for the "device lost"-case .
We could also let the user decide if the want to have:
- Unencrypted database and no Password
- Encrypted database with password
- One time startup
- Each time when accessing the app like an app password (but that would either break the notifications or need to have the database still opened in the background as with One time startup)