Last modified: January 21, 2016
Thank you for using Privates.
We work very hard to preserve your privacy and security, and we do our best to be as transparent as possible in explaining how we use your data in providing our Services. Please contact us if you have any questions at email@example.com.
Our Privacy Practices, in Brief:
Privates has to collect some information from you in order to provide our Services to you, but we do so in a highly limited, highly secure way.
We can’t see messages you send. Your messages are always encrypted before they are transmitted to our servers. Because of this we don’t know — and can’t reveal to others — anything about you or how you use the Privates App aside from the phone number used to create your account, the date your account was created, the date of last use and the type of device on which such account was installed.
After reading an incoming message, Privates deletes its metadata. After all recipients have read a message, Privates removes the encrypted message data from the server.
The Privates App is designed so that screenshots are not possible, but there is a small possibility that the anti-screenshot technology could be circumvented with substantial effort.
We cannot prevent someone using a camera to take a picture of a message on a screen. Therefore, we strongly encourage you to only send private messages or sensitive information to people you know and trust.
You own your data. We do not share or sell any data about our users.
What Information Does Privates Collect and How Is It Used?
We are committed to limiting our collection of your information to what is necessary to provide you with our Services.
We only collect information from users who create Privates Accounts. You must create a Privates Account to use the Privates App.
What We Donʼt Collect: We do not collect any location information or have access to the contents of the communications you send using the Privates App. After messages are deleted (or after they expire), they are forensically deleted and are not retrievable by us or anyone else. (Remember, however, that if you send a Privates message to another Privates user, that message might remain on their device even after you delete it from yours, depending on the value you set for the self-destruct time of that message and whether the recipient took a screenshot of the message.)
User-Provided Information: We collect some very limited information from you after you download the Privates App in order to allow you to create a Privates Account, and begin using the Privates App.
[Your Privates ID]: [Your Privates ID] is how you allow others to contact you via Privates, and it will be assigned to you by Privates.
Your mobile phone number: Your mobile phone number is used to confirm account creation, to log in, and to reset your password (via SMS code) if you forget it.
Your Password: We require you to have a password to use the Privates App. For your own security, we recommend that you use a long, unique password consisting of a mix of upper and lower-case letters, numbers, and symbols.
Optional User-Provided Information: Within the Privates App, we provide a few optional features for your convenience. Some of these features, described below, will ask for personal information. If you want to keep your use of Privates as anonymous as possible, please read these sections carefully in order to understand how we associate information you provide with your Privates Account.
Push Notifications: When setting up your Privates Account, we will ask if you want to receive notifications of new Privates messages. Push notifications are functions of devices operating system, so if you enable this feature, your devices operating system’s manufacturer will know that you are using the Privates App, but will not know anything about how you use it or be able to see anything you transmit through it.
[ID Connections]: To allow your friends to find you on Privates without knowing your [Privates ID], you may choose to associate your other contact information — currently, just your phone number or email address — with your [Privates ID]. If you use [ID Connect] to associate your phone number with your [Privates ID], we use a third party service solely to deliver a confirmation SMS to you, but that party will not receive any information about you other than your phone number, and the SMS message itself will contain no information except a confirmation link.
Invitations: If you enable Privates [Invitations], the Privates App will be able to access your device’s contacts in order to invite them to use our Services. We never store your device contacts on our servers in any way. All invitations are generated locally on your device, without sharing any information with us.
Find Friends: Find Friends allows you to search for contacts who have used [ID Connect] to associate their phone number or email address with their Privates Accounts.
Crash Log: For the purpose of debugging and error correction as well as for system continuity, users might choose to send crash logs to Privates when prompted by the app. The logs do not contain any user personal information and they pertain only to the Privates App. The process is voluntary and users can choose not to send their crash logs to us at any time. Participating in errors/crash reporting will help Privates to become a better app.
Automatically Collected Information: Privates collects two types of information automatically during your setup and use of the Privates App: Device Information and Aggregate Usage Data.
Aggregate Usage Data: During the operation of our services, we also collect aggregate, anonymous information about basic usage statistics, such as the number of messages sent by all Privates users daily, what types of messages our users tend to send (e.g., voice messages more often than text), and so forth. We never attempt to (and cannot) identify users associated with any of this information.
What Information Does Privates Share with Third Parties?
We do not share any user information we have with third parties, with the exception of the third-party service with whom we share your phone number for the sole purpose of sending you an SMS confirmation when you associate your phone number with your [Privates ID]. Please note that the provision of a phone number is currently required for account creation.
We will always notify you of any third party requests for your information unless legally unable to do so. As soon as legally permitted to do so, we will notify our users of requests for their information. We require a warrant before handing over the contents of your communication, however, because of the nature of our technology, the contents of your communication will difficult to decipher if obtained.
You Can Deactivate Your Account
You can deactivate your account at any time. Once deactivated your account will be irrevocably suspended, ensuring that nobody can use that [Privates ID] again in order to prevent impersonation. If you wish to deactivate your Privates account, go to Privates Settings, Account, tap “Terminate Account” and verify by entering your password.
We Retain As Little Data As Possible, for the Least Time Possible
Data Retention on Privates’ Servers: Our servers store the encrypted messages that you send and receive only long enough to ensure their reliable delivery to each device associated to your account. Undelivered messages are deleted after  hours. We retain non- message data (i.e. Types of messages) for as long as you use the Privates Services and for an indefinite time thereafter.
Data Retention on Your Device: All messages are stored in encrypted form on end users’ devices. You choose your own retention policy for your messages by choosing how long a message is viewable before it is deleted (via the self-destruct time for sent messages and manual deletion for your device). Deleted messages cannot be recovered.
We are concerned about safeguarding the confidentiality of your information. We provide physical, electronic, and procedural safeguards to protect information we process and maintain. For example, we limit access to this information to authorized employees who need to know that information in order to operate, develop, or improve our Services. No sensitive information is in the clear: we take reasonable efforts (as described herein) to ensure that everything we store is not retrievable by us or anyone else.
No security system can prevent all potential security breaches. Therefore we have limited the potential implications of such a breach by designing our system so that in the event of a breach, we would have the least possible information about you.
We do not direct our Services to children under the age of 13. If you are the parent or guardian of a child and you believe that we have inadvertently received personal information about that child, please contact us as described in the Contact Us section below and we will delete the information from our records.
Any information provided to us by our users voluntarily when they request customer support (e.g., an email address) will be used to respond to that individual request and may be logged as part of our effort to improve our customer service and solve any product-related issues. These email addresses cannot be linked to our users’ Privates accounts, unless users voluntarily include their Privates account information in their customer service-related requests. We strongly discourage our users from disclosing their login and password information.
Users Outside the US
If you use our Services and reside outside the U.S., your information will be transferred to the U.S. and will be processed and stored there under U.S. privacy standards. By using our Services and providing information to us, you consent to such transfer to and processing in the U.S. You are responsible for complying with any laws or regulations in your country that govern use of applications and services like Privates.
If you have any questions regarding privacy while using our Services, or have questions about our practices, please contact us via email at firstname.lastname@example.org.