Speakapp never knows who you are, who you're talking to, or the contents of your messages. The Speakapp app does not collect or share your information. That’s our policy in a nutshell.
Speakapp is designed so that it doesn't store any information which could be used to track you. We don’t store any identifying information about your device, such as your IP address or your user agent. You also don't need a phone number, e-mail, or any information tied to your real identity to make a Speakapp account. We did this so that you can remain private and anonymous whenever you’re using Speakapp. You don't need to jump through hoops or tweak special settings to make Speakapp private — it’s private by default. The first time you use Speakapp, you need to connect to a mainnet by Vexanium blockchain. Your IP address can be seen by the seed node, but your IP is not recorded. You can also shield your real IP by using a VPN. The seed node will never see who you’re talking to or what you’re talking about.
Keeping Your Account Secure
Speakapp embraces privacy by design and does not have the ability to access your messages. You are responsible for keeping your Private Key, device and your Speakapp account safe and secure.
Our Services may allow you to access, use, or interact with third-party websites, dapps, cross-chain bridge, and other products and services. When you use third-party services, their terms and privacy policies govern your use of those services.
Speakapp uses asymmetric end-to-end encryption (E2EE) ensure the security and privacy of messages in 1:1 chats and groups. Private encryption keys are generated and stored on the user's device only.
E2EE means that only the communicating parties (sender and receiver) are able to read and/or modify the messages. It prevents any potential eavesdropping - including internet service providers, cell phone companies, or even Speakapp employees and admins. Since no one has the private key for encryption, the messages look like gibberish.
Encryption and Privacy
Encryption is a mathematical process by which a message that can be read by anyone (plaintext) is encoded into a secret that can be sent through any number of middlemen and not be read by anyone unless they have the private encryption key that can decode the secret message back into plaintext.
Encryption does not always mean users have privacy. In most messaging systems (for example email, or other Messenger) the messages are encrypted between your device and the server however, either the messages are stored unencrypted (plain text) or the encryption keys are stored on the same server essentially allowing unauthorized access. Even with strong encryption, unless they are using E2EE, then there are always places where messages can be decrypted into plaintext.
Speakapp uses cryptographic key ECDSA/XSalsa20 256/Poly1305 that is used for encrypting and decrypting messages. In asymmetric encryption, there is a public key to encrypt a message and a private key to decrypt a message.
Onion routing network
An onion routing network is a network of nodes over which users can send anonymous encrypted messages. Onion networks encrypt messages with multiple layers of encryption, then send them through a number of nodes. Each node ‘unwraps’ (decrypts) a layer of encryption, meaning that no single node ever knows both the destination and origin of the message. Speakapp uses onion routing to ensure that a server which receives a message never knows the IP address of the sender.
We may be asked to respond to certain government information requests. Any information which we are permitted to publicly share about requests that we have received will be included on this page. These requests may relate to Speakapp, our secure messaging app, Cross-Chain Bridge, Mainnet, our onion routing network, the Vexanium blockchain, or any combination of our technologies.
Government information requests may be issued through subpoenas or other forms of legal demand, informal channels, or through legislation (such as the Indonesian Government’s Technical Capability Notice). Requests may be made by different legal authorities from multiple jurisdictions, including the Indonesia, and/or other countries.
However, due to the design of our decentralised technology, we cannot collect user-specific data.
Get in touch!
If you would like more information, have suggestions about how we can better protect your privacy, or just want to say hello — please send us an email at [email protected]