Privacy Policy

Your privacy isn't just our priority—it's our foundation. Here's exactly how we protect your data.

Effective Date: January 1, 2025

🔒Our Privacy Promise

Zero knowledge. Zero compromise.

🛡️Introduction

Tangle is a private communication app that prioritizes your privacy through end-to-end encryption. This policy explains how we collect, use, and protect your information.

📋Information We Collect

Personal Information

  • User Tag: Your unique identifier within the app (limited to 2 changes per account)
  • Display Name: Optional full name for your profile
  • Contact List: Tags and names of users you've added as contacts (private, not shared)
  • Privacy Settings: Your call privacy preferences (anyone/contacts-only/nobody)
  • Burner Profile: Optional temporary tag and name (orange UI indicator when active)
  • Authentication: Google Sign-In, Apple Sign-In, or Firebase Email Auth

Communication Data (End-to-End Encrypted)

  • Messages: All chat content encrypted per-session and removed when chat ends
  • Media Files: Images and files shared in chats, encrypted with session key
  • Presence Data: Who's actively in the chat (30-second timeout rules)
  • Scheduled Calls: One-time and recurring chat scheduling data
  • Minimal Metadata: Only letter tokens stored in RTDB, no UUIDs or tag names with messages

Technical Data

  • Device Tokens: Push notification tokens for call-style invitation alerts
  • Encryption Keys: Per-session shared keys (generated when call document is created)
  • Device Permissions: Camera, photo library, notifications (with your consent)
  • Presence Tracking: Active participation status during live sessions

How We Use Your Information

  • Communication: Enable live text sessions with call-style invitations
  • Contact Management: User lookup by unique tags and contact privacy controls
  • Notifications: Send chat invitations and scheduled chat reminders at exact times
  • Presence Tracking: Show who's actively in chat with 30-second timeout rules
  • Security: Maintain per-session encrypted communication channels
  • Consent Management: Unanimous approval system for adding participants or pausing chats

🔗Third-Party Services

We use Google Firebase services with strong security rules:

  • Authentication: Google Sign-In, Apple Sign-In, and Firebase Email Auth
  • Database: RTDB for encrypted message storage, Firestore for call documents and user info
  • Storage: Firebase Storage for encrypted media files with session keys
  • Messaging: Push notifications via Firebase Cloud Messaging for call-style invitations
  • Functions: Server-side chat scheduling, user lookup, and session management
  • Security Rules: Strict Firebase rules ensure only participants can access call documents

🔐Data Security

  • Per-Session Encryption: Each call generates its own shared key for AES-256-GCM encryption
  • Minimal Metadata: RTDB stores only letter tokens—mapping tokens to people requires call document access
  • Access Control: Firebase rules ensure only invited participants can get session keys
  • No Analytics: We don't implement user tracking or analytics
  • Content Deletion: Messages and media removed from servers when sessions end

⚖️Your Privacy Rights

  • Contact Control: Add, remove, and block users (blocks apply to account ID, not tags)
  • Privacy Settings: Control who can invite you to chat (anyone/contacts-only/nobody)
  • Burner Management: Create, change, or delete burner tags anytime
  • Session Control: Hang up to end chats and remove content access for everyone
  • Account Deletion: Delete your account through the profile page

🗑️Data Retention

  • Session Data: Messages encrypted and stored during active sessions only
  • Automatic Deletion: Content removed from servers and all devices when sessions end
  • History Records: Only lightweight records that chats occurred (no content)
  • Account Deletion: All data removed when account is deleted
  • User Control: Local history records can be cleared by users

👶Children's Privacy

Tangle is not intended for children under 13. We don't knowingly collect information from children under 13.

📧Contact Us

For privacy questions: support@tangle-app.com

To report abuse or safety concerns: abuse@tangle-app.com

🔄Updates

We'll notify you of privacy policy changes through the app.