Privacy Policy

• Account email and authentication tokens.
• Circle metadata (name, slug, branding, plan).
• Public identity keys and passphrase-encrypted private keys.
• Wrapped (encrypted) per-member circle keys.
• Build logs, IP, user-agent for abuse prevention.

• Plaintext messages, calls, or shared files.
• Your recovery passphrase.
• Decrypted circle keys.

All sensitive content is encrypted on your device using XSalsa20-Poly1305 with keys we cannot derive or store.

We use cloud infrastructure for hosting and database storage. All stored content blobs are ciphertext.

You may export metadata, delete your account, and revoke devices at any time. Because we hold only ciphertext, deletion is irreversible.

Privacy questions: privacy@maib.tech