Privacy Policy
Last Updated: 2026-02-26
Your privacy and security are our top priorities
1. Data Collection
We collect minimal data necessary to provide our secure messaging service. This includes technical information such as IP addresses for security monitoring, browser type for compatibility, and timestamps for message delivery. We do not collect personal information, message content, or any data that could identify you personally. Our zero-knowledge architecture ensures that message content is encrypted before reaching our servers and cannot be accessed by our team or any third parties.
2. Use of Data
The limited technical data we collect is used solely to maintain service security, prevent abuse, and ensure reliable message delivery. We analyze usage patterns to improve our security measures and identify potential threats. We never use your data for advertising, marketing to third parties, or any commercial purposes beyond providing our secure messaging service. All data processing is governed by strict security protocols and privacy principles.
3. Data Storage
Messages are encrypted and stored temporarily only until they are read and automatically deleted. Technical logs are retained for a maximum of 30 days for security purposes, after which they are permanently deleted. We use secure, encrypted storage systems located in privacy-friendly jurisdictions. Our infrastructure is designed to minimize data retention and maximize security throughout the entire data lifecycle.
4. User Rights
You have the right to know what data we collect, request deletion of any stored data, and receive information about our data practices. Since we operate on a zero-knowledge basis, most user data is automatically deleted through our normal operations. You can contact us at any time to exercise your privacy rights or ask questions about our data handling practices. We respond to all privacy requests within 72 hours.
5. Third-Party Services
We use minimal third-party services, all carefully vetted for privacy and security standards. These may include cloud infrastructure providers and security monitoring tools, all bound by strict data processing agreements. We do not share user data with advertisers, analytics companies, or any third parties for commercial purposes. Any third-party integrations are documented and regularly audited for compliance with our privacy standards.
6. Data Security
We implement industry-leading security measures including AES-256 encryption, perfect forward secrecy, and regular security audits by independent firms. Our systems are designed to protect against both external threats and internal access. We maintain comprehensive incident response procedures and continuously monitor for security threats. All data transmission occurs over encrypted connections, and our infrastructure is hardened against common attack vectors.
7. Children's Privacy
Our service is not directed toward children under 13, and we do not knowingly collect information from children. If we become aware that we have collected personal information from a child under 13, we will take immediate steps to delete such information. Parents who believe their child has provided information to us should contact us immediately for assistance with data removal.
8. Policy Updates
We may update this Privacy Policy to reflect changes in our practices or legal requirements. Users will be notified of significant changes through our website and email notifications where applicable. We encourage regular review of this policy to stay informed about how we protect your privacy. The date of the last update is always clearly displayed at the top of this policy.