CipherMind

Privacy Policy

Effective: March 11, 2026

CipherMind ("we", "us", "our") is built on a zero-knowledge architecture. This policy explains what data we collect, why, and how we protect it.

1. Data We Do NOT Collect

  • Message content — all messages are end-to-end encrypted using the Signal Protocol. We cannot read them.
  • Call content — voice calls are peer-to-peer with encrypted signaling. We relay connection data only.
  • Contacts — we do not upload or scan your phone's contact list.
  • Location — we never request or store your geographic location.
  • Advertising IDs — we have no ads and collect no advertising identifiers.

2. Data We Collect

We collect the minimum data required to operate the service:

  • Account info — email address (for verification), display name, and optional avatar.
  • Encryption keys — public identity keys and signed pre-keys required for the Signal Protocol key exchange.
  • Message metadata — sender ID, recipient ID, timestamp, and message type. This is needed for delivery routing and is automatically deleted per our retention policy.
  • Device info — device name and platform (e.g. "Pixel 8 — Android") for session management.
  • Push tokens — FCM registration tokens for delivering notifications. Cleared on logout.

3. How We Protect Your Data

  • Signal Protocol (X3DH + Double Ratchet) for all message encryption.
  • TLS 1.2+ for all client-server communication.
  • IP addresses are hashed before logging — we do not store raw IPs.
  • Files are stored with UUID filenames and application/octet-stream content type — no identifiable metadata.
  • EXIF and audio metadata are stripped client-side before upload.
  • Passwords and PINs are hashed using PBKDF2 with 100,000 iterations.

4. Data Retention

  • Delivered messages are deleted from the server within 72 hours.
  • Undelivered messages are deleted after 17 days.
  • Ghost Mode (disappearing messages) deletes messages on a user-defined timer.
  • Media files follow the same retention policy as their parent messages.
  • Account deletion removes all server-side data permanently.

5. Third-Party Services

  • Firebase Cloud Messaging — for push notification delivery only. We send data-only messages; notification content is generated locally on your device.
  • Cloudflare — for DNS and DDoS protection. Subject to Cloudflare's Privacy Policy.

We do not sell, share, or provide your data to any other third party.

6. Your Rights

  • Request a copy of your account data.
  • Delete your account and all associated data at any time.
  • Use Panic Wipe to instantly destroy all local data on your device.

7. Changes to This Policy

We may update this policy from time to time. Significant changes will be communicated through an in-app notification. Continued use of CipherMind after changes constitutes acceptance.

8. Contact

Questions about this policy? Contact us at [email protected].