Privacy Policy

Last Updated: January 2026

Our Privacy Promise

"We literally CANNOT see your data. This is by design, not policy."

Unlike other apps that promise privacy but hold your data, FRNDSAPP is architecturally designed so that we CANNOT access your private information — even if we wanted to, even if compelled.

1 What We Collect (Minimal)

Account Information

  • • Email or phone number (for authentication only)
  • • Your chosen display name
  • • Profile pictures (verified against your face)

Verification Data

  • • 3D face liveness scan (stored securely, used ONLY for verification)
  • • This ensures no fake accounts and validates your profile pictures

Space Participation

  • • Which Spaces you join
  • • Your public profile in those Spaces
  • • Your matching preferences (used for AI matching)

Location (Optional, Privacy-Preserved)

  • • Approximate area for nearby matching (geohash, not exact coordinates)
  • • We show "3.2 km away" — NEVER your exact location
  • • You control when to share location

2 What We CANNOT See (By Design)

End-to-End Encrypted Content

ALL of the following are encrypted on YOUR device and can ONLY be decrypted by the intended recipient:

Text messages — We see encrypted blobs only
Photos you share — Encrypted before upload
Videos you share — Encrypted before upload
Files & documents — Encrypted before upload
Voice messages — Encrypted before upload
Location sharing — Encrypted coordinates
Audio calls — WebRTC E2EE, we never hear
Video calls — WebRTC E2EE, we never see

We use the Signal Protocol — the same encryption trusted by journalists, activists, and security professionals worldwide.

OTS (One-Time Secure) Messages

These are EXTRA secure:

  • • Encrypted end-to-end
  • • Camera verifies recipient in real-time
  • • Auto-delete after viewing
  • • We have ZERO access to content

3 Contact Sync — Hash Only

How Contact Sync Works

1 Your phone hashes each contact (one-way encryption)
2 Only hash values are sent to our servers
3 We compare hashes with registered user hashes
4 We return: "These hashes match existing users"
5 Your app shows: "These contacts are on FRNDSAPP"

RESULT: We NEVER see names, numbers, or any contact info. We literally cannot extract your contact list from hashes.

4 3D Face Verification

Why We Do It

  • • Ensures every user is a real human
  • • Prevents fake profiles and catfishing
  • • Validates that profile pictures are actually YOU

How It Works

  • • One-time 3D liveness scan at registration
  • • Checks: depth, movement, blink, anti-spoofing
  • • No photos of photos, no masks, no screens
  • • Stored securely, used ONLY for verification

Profile Picture Verification

  • • Every profile pic is compared to your verified face
  • • If the face doesn't match, the picture is rejected
  • • This prevents catfishing and fake photos

5 Location Privacy

What We Know

  • • Approximate area (geohash) for nearby matching
  • • Example: "Downtown Seattle area" — NOT your address

What We Show Others

  • • Distance only: "3.2 km away"
  • • NEVER your exact coordinates
  • • NEVER your address or precise location

You Control It

  • • Location sharing is optional
  • • You can disable it anytime
  • • Spaces work without location too

6 Data Storage & Security

Where Data Lives

  • • Encrypted messages: On your device + encrypted backup
  • • Account data: Secure cloud infrastructure
  • • Face verification: Encrypted, isolated storage

Security Measures

  • • All data encrypted at rest
  • • TLS encryption in transit
  • • Regular security audits
  • • No third-party analytics that track you

7 What We DON'T Do

We don't sell your data — We have nothing to sell
We don't show targeted ads — We can't, we don't have your data
We don't read your messages — We literally cannot
We don't share with third parties — Nothing to share
We don't mine your contacts — We only see hashes
We don't track your location history — Only current for matching
We don't store message content — It's E2EE, we only see blobs

8 Your Rights

Access Your Data

  • • Export your account information anytime
  • • See which Spaces you're in
  • • View your profile data

Delete Your Data

  • • Delete your account completely
  • • All your data is removed
  • • Messages you sent remain encrypted (others keep their copy)
Request Account Deletion →

Control Your Privacy

  • • Adjust location sharing
  • • Control who can message you
  • • Block users instantly

9 Open Source Transparency

Our frontend code is fully open source:

  • • GitHub: github.com/frndsapp
  • • Audit our encryption implementation
  • • Verify our privacy claims
  • • Report security issues

"Don't trust us — VERIFY us."

10 OTS Messages — Extra Privacy

OTS Message Privacy

📷 Camera activates to verify recipient
👤 Only YOUR verified face can unlock
🚫 Blocks if you look away or move
⚠️ Deletes if anyone else appears
📱 Works only on primary device
📸 Gray patterns blur screenshot attempts
🔔 Sender notified if screenshot detected
💨 Auto-deletes after viewing

RESULT: The most private way to share sensitive information.

11 Children's Privacy

FRNDSAPP is not intended for users under 18. 3D face verification helps ensure age-appropriate usage.

12 Changes to This Policy

We'll notify you of significant changes via:

  • • In-app notification
  • • Email (if provided)

13 Contact Us

Questions about privacy?

Summary: The FRNDSAPP Privacy Difference

What Others Do What FRNDSAPP Does
Store your messages Can't read them (E2EE)
See your contacts Only see hashes
Track exact location Only approximate area
Allow fake profiles 3D face verified only
Sell your data Have nothing to sell
Promise privacy Prove it with open source

"Privacy isn't our policy. It's our architecture."