Privacy Policy

1. Introduction

HushHush ("the App") is a local-only encrypted messaging vault developed by HushHush ("we", "us", "our"). This Privacy Policy explains how the App handles information. By using HushHush, you agree to the practices described in this policy.

2. Information We Collect

We collect no personal data whatsoever.

HushHush operates entirely on your device. The App does not:

• Collect your name, email address, phone number, or any personal identifiers
• Track your location or device information
• Use analytics, advertising, or tracking SDKs
• Transmit any data over the internet
• Connect to any servers, APIs, or cloud services
• Access your contacts, photos, or files (except the camera for QR code scanning, with your explicit permission)

3. Data Storage

All data you create within HushHush — including messages, contacts, encryption keys, and settings — is stored exclusively on your device using encrypted local storage.

Your data is protected by multiple layers of encryption, including AES-256-GCM, XChaCha20-Poly1305, XSalsa20-Poly1305, and AES-256-CBC+HMAC-SHA-256. Your master password is hashed using Argon2id with a device-bound pepper and is never stored in plaintext.

iCloud synchronisation is explicitly disabled. Your data does not leave your device under any circumstances.

4. Camera Access

The App requests camera access solely for scanning QR codes during the secure contact exchange process. Camera data is processed in real-time and is never recorded, stored, or transmitted. You may deny camera access and the App will continue to function — you can add contacts manually instead.

5. Third-Party Services

HushHush does not integrate with any third-party services, analytics platforms, advertising networks, or social media SDKs. No data is shared with any third party for any purpose.

Firebase Analytics is explicitly disabled at the native configuration level and no data is collected or transmitted through Firebase services.

6. Data Retention and Deletion

Since all data is stored locally on your device, you have complete control over your data at all times:

• Delete individual messages — Remove specific messages from any conversation
• Clear chat history — Erase all messages for a specific contact
• Delete contacts — Remove contacts and their associated encryption keys
• Emergency wipe — Instantly destroy all data, encryption keys, and settings through the Panic Wipe feature
• Uninstall the App — Removing the App from your device deletes all associated data permanently

We cannot recover your data after deletion, as we never have access to it and hold no copies.

7. Children's Privacy

HushHush is not directed at children under 13. We do not knowingly collect personal information from children. Since the App collects no personal information from any user, there is no risk of children's data being collected or processed.

8. Security

HushHush employs state-of-the-art cryptographic practices to protect your data, including:

• Four-layer randomised chain encryption for all messages
• Argon2id password hashing with device-bound pepper
• Optional post-quantum hybrid key exchange (ML-KEM-1024 + P-384 ECDH) — activated per-contact via Ultra Secure pairing only
• Auto-lock with configurable timer
• Brute-force protection with progressive lockout

Despite these measures, no system can guarantee absolute security. You are responsible for maintaining the confidentiality of your master password.

9. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be reflected within the App and on our website. The "Last updated" date at the top of this policy indicates when it was last revised. Continued use of the App after any changes constitutes acceptance of the revised policy.

10. Contact Us

If you have any questions about this Privacy Policy or the App's privacy practices, please contact us: