Privacy Policy

Last updated: 2026-04-12.

This is a working draft of the policy. A final legal pass with counsel is prepared before the public beta launch.

What the server sees

• The server cannot read message content. All messages are end-to-end encrypted using MLS (RFC 9420) on the client.
• The server sees only the metadata required to deliver messages: device identifiers, routing information, MLS epochs, timestamps.
• Media attachments are client-side encrypted. The server stores ciphertext only.

What data we store

• User and device identifiers.
• Chat routing metadata.
• Subscription and billing data if you purchase Premium.
• Security and error logs that do not include message content.

Your rights

• You can delete your account. See the account deletion page.
• You can request an export of metadata that pertains to you.
• You can revoke a linked device.

Related legal documents

• Terms of service
• Account deletion
• Support channels

Contact

For privacy questions: privacy@svoi.red.