Privacy Policy

Effective Date: April 13, 2026 · Last Updated: April 13, 2026

Aurogy ("we," "us," or "our") operates the Aurogy encrypted messaging platform, including mobile applications, web clients, and related services (collectively, the "Service"). This Privacy Policy explains what information we collect, what we cannot collect by the design of our architecture, and how we handle your data.

The short version: Aurogy is engineered so that we technically cannot access your messages, calls, or media. Our end-to-end encryption means your content never exists in a form we can read. This is not a policy choice — it is an architectural guarantee.

1. Information We Collect

1.1 Account Registration Data

Phone number hash: We store a one-way cryptographic hash of your phone number for account verification. We do not store your actual phone number after the initial verification process completes.
Device public key: Your device generates a public/private key pair locally. Only the public key is transmitted to our servers for message routing purposes.
Blockchain account address: A wallet address on the Aurogy gasless network, generated locally on your device and registered for token operations.

1.2 Technical Data

Connection metadata: Timestamps of when your device connects to our relay servers, used solely for message delivery and expiring after 72 hours.
Push notification tokens: Device tokens for delivering push notifications through Apple APNs or Google FCM. These do not contain message content.
App version and platform: Basic device information (operating system, app version) for compatibility and support purposes.

1.3 Blockchain Data

On-chain transactions: $AURO token transfers and smart contract interactions are recorded on the Aurogy blockchain. These transactions are public by the nature of distributed ledger technology and include sender address, recipient address, amount, and timestamp.
Gasless relay records: Meta-transactions processed through our gasless relay are logged for network integrity.

2. Information We Cannot Collect

The following data is protected by Aurogy's end-to-end encryption architecture using quantum-resistant algorithms. We do not possess the cryptographic keys necessary to access this information, and our systems are designed so that plaintext content never passes through our infrastructure:

Message content: All text messages are encrypted on your device before transmission using post-quantum cryptographic algorithms. Only the intended recipient's device can decrypt them.
Voice and video call audio/video: Calls are established via peer-to-peer connections with end-to-end encryption. When TURN relay servers are used for connectivity, the relayed data remains encrypted.
Media files: Photos, videos, documents, and voice messages are encrypted locally before being uploaded to IPFS as encrypted blobs. We cannot decrypt these files.
Contact lists: Your contacts are stored locally on your device and are never uploaded to our servers.
Location data: Aurogy does not request, collect, or process location information.
Private keys: Your encryption private keys and wallet private keys are generated and stored exclusively on your device.

Architectural guarantee: Even if compelled by legal process, we cannot produce message content, call recordings, or media files because we do not have the technical capability to decrypt them. Our architecture makes mass surveillance impossible.

3. IPFS Storage

Media files and large message payloads are stored as encrypted blobs on the InterPlanetary File System (IPFS). These files are:

Encrypted with recipient-specific keys before upload
Addressed by content hash (CID), which does not reveal the contents
Subject to automatic expiration and garbage collection based on configurable retention periods
Not readable by IPFS node operators or any third party without the decryption key

4. Third-Party Services

4.1 IPFS Nodes

We operate and connect to IPFS nodes for distributed file storage. Third-party IPFS nodes that participate in content distribution can only see encrypted blobs and content hashes — never plaintext content.

4.2 TURN/STUN Servers

For voice and video calls where direct peer-to-peer connection is not possible, we operate TURN relay servers. These servers forward encrypted packets between participants and cannot decrypt the audio or video streams.

4.3 Push Notification Services

We use Apple Push Notification Service (APNs) and Google Firebase Cloud Messaging (FCM) to deliver push notifications. Notification payloads contain only a signal to wake the app — no message content is included in push notifications.

5. Analytics and Telemetry

Aurogy collects minimal, anonymized usage telemetry to improve the Service:

Aggregate feature usage counts (e.g., number of messages sent, not content)
Crash reports with stack traces (no user data included)
Network performance metrics (latency, delivery success rates)

All telemetry is stripped of personally identifiable information before collection. You may opt out of telemetry entirely in the app settings.

6. Cookies and Local Storage

The Aurogy mobile application does not use cookies. Our landing page and web client may use:

localStorage: To store your theme preference (light/dark mode). This data never leaves your device.
Essential cookies: For session management on the web client, if applicable.

We do not use advertising cookies, tracking pixels, or third-party analytics cookies. See our Cookie Policy for full details.

7. Data Retention and Deletion

Account data: Phone number hashes and public keys are retained for the lifetime of your account. Upon account deletion, this data is permanently removed within 30 days.
Connection metadata: Automatically purged after 72 hours.
Blockchain data: On-chain transaction records are immutable and cannot be deleted due to the nature of distributed ledger technology. Wallet addresses are pseudonymous.
IPFS data: Encrypted blobs expire according to the configured retention period (default: 90 days) and are garbage collected from our pinning nodes.
Telemetry: Anonymized telemetry data is retained for 12 months, then aggregated and anonymized further or deleted.

8. Data Security

We implement industry-standard security measures to protect the limited data we do hold:

All server communications use TLS 1.3
Account data is encrypted at rest using AES-256
Infrastructure is hosted in SOC 2 compliant facilities
Regular third-party security audits and penetration testing
Bug bounty program for responsible vulnerability disclosure

9. Your Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

Right of access: Request a copy of the personal data we hold about you.
Right to rectification: Request correction of inaccurate personal data.
Right to erasure: Request deletion of your account and all associated data.
Right to data portability: Receive your data in a structured, commonly used format.
Right to restrict processing: Request that we limit how we use your data.
Right to object: Object to processing of your data for specific purposes.
Right to withdraw consent: Where processing is based on consent, withdraw that consent at any time.

To exercise any of these rights, contact us at privacy@aurogy.com. We will respond within 30 days. For users in the European Economic Area, our supervisory authority response time is in compliance with GDPR Article 12.

10. International Data Transfers

Aurogy operates globally. The minimal account data we collect may be processed in jurisdictions outside your country of residence. We ensure appropriate safeguards are in place for international transfers, including Standard Contractual Clauses where applicable.

11. Children's Privacy

Aurogy is not intended for use by individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that a child under 16 has provided us with personal data, we will take steps to delete that information promptly. If you believe a child under 16 is using our Service, please contact us at privacy@aurogy.com.

12. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will notify you through the app or by posting a prominent notice on our website. The "Last Updated" date at the top of this policy reflects the most recent revision. Continued use of the Service after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Email: privacy@aurogy.com
Security issues: security@aurogy.com
General inquiries: hello@aurogy.com