BlatMSG
Features How it works FAQ
Download
← Back to BlatMSG

Privacy Policy

Short version: we don't want your data, and we built BlatMSG so we can't read it.

No accounts

BlatMSG has no sign-up, no email, no phone number, and no user profiles. Your identity is a cryptographic keypair generated on your device the first time you open the app.

Your messages

Every message is end-to-end encrypted on your device. Our relay server only ever stores and forwards opaque ciphertext — it cannot read your messages, and neither can we.

Your keys

Your private keys never leave your device. They're stored locally in your operating system's secure keychain, encrypted at rest. Your message history is stored only on your own device, encrypted.

What the relay necessarily sees

To deliver messages, the relay handles routing metadata: opaque device/conversation identifiers, timestamps, and message sizes. It never sees message content, your contacts' names, or your keys. BlatMSG does not attempt to hide this metadata in this version.

No tracking

No advertising, no cookies, no third-party trackers, and no selling or sharing of data. The only thing we count is a handful of anonymous aggregate totals — e.g. how many downloads or messages in total — as plain numbers with no identifiers, no per-event logs, and no personal data. We literally cannot tie any count to a person.

Updates

The app checks our update server for new versions and downloads cryptographically signed updates. These requests reveal only that a BlatMSG client checked for an update.

Download · Privacy · Terms ·

BlatMSG · end-to-end encrypted · made with care.