The parts that protect you already are. The encryption code, database schema, and threat model are published as open core, so anyone can audit exactly how your notes are secured rather than taking our word for it.
The apps are next. Once the native apps for every platform have shipped, we will open-source the client code (web, desktop, and mobile). The one part that stays closed is the sync backend, and it never holds anything but encrypted data we cannot read. Keeping it private costs you nothing on privacy, and it stops anyone from cloning the whole service and passing our work off as their own. Open where it protects you, closed where it protects us.