Privacy Policy 🔒
We are committed to transparency and the protection of user privacy. This document outlines how we handle information within our app.
Data Handling
Public IP Retrieval
- 🌐 Public IP obtained via Cloud/Private server
- 📦 Request includes:
- App version
- Server token (if applicable)
Encryption
- All communication between the app and the cloud server is protected with secure encryption protocols, safeguarding your data during transit.
- End-to-end encryption optional but recommended:
- 🔑 Messages data is encrypted before being sent to the API
- 📨 Decrypted only on the device
- 👁️ No third-party access (including us)
Data Handling
- 🕒 Plaintext data hashed (SHA256) within 1 minute after processing
- 📤 Shared data:
- Device manufacturer
- Device model
- App version
- Firebase Cloud Messaging (FCM) token
Push Notifications
- 📲 Routed through cloud server
- 🔒 Contains only FCM token
- 🚫 No message content/recipients
Data Handling
- 📝 Certificate requests are purged after 24h
- 🔑 Private keys generated client-side
- 📜 CSR generated by the CLI tool contains only IP address
User Privacy
- 🚫 No usage statistics
- 🚫 No crash reports
- 🚫 No behavioral analytics
Your Rights
- 📝 Access personal data
- ✏️ Correct inaccurate information
- 🗑️ Request data deletion
Contact: [email protected]
Data Retention
| Service | Subject | Period | Action |
|---|---|---|---|
| Public Server | Inactive Devices (including messages) | 1 year | Permanent deletion |
| Public Server | Processed Messages | 1 minute | Hashing |
| Public Server | Processed Messages | 1 month | Permanent deletion |
| Certificate authority | CSRs and certificates | 24h | Permanent deletion |
| Infrastructure | Server logs and metrics | 10 days | Permanent deletion |
Policy Updates
- 2024-10-16 ( 1.22+): Removed dependency on ipify for retrieving public IP address
- 2025-03-17: Decreased processed messages hashing period from 15 minutes to 1 minute
By using our app
You agree to these privacy terms