Privacy Policy

HYVE is developed and operated by Vibe Software Solutions Inc., a software company. Questions about this policy can be directed to vibesoftwaresolutions@gmail.com.

HYVE ID and public keys. When you create an account, you choose a HYVE ID (username). We store your HYVE ID and the associated public key bundle (identity key, signed prekey, one-time prekeys) on the HYVE identity server. This information is intentionally public — it is what allows other users to find you and initiate encrypted conversations. No name, phone number, email address, or payment information is required or stored.

FCM push token. If you enable push notifications, we store a Firebase Cloud Messaging (FCM) token associated with your HYVE ID. This token is used only to send data-only wake-up notifications when someone sends you a message. We do not use it for marketing or analytics.

Nothing else. We do not collect your IP address, device identifiers, location (unless you use the optional location-sharing feature — see §5), usage analytics, crash reports, or any message content.

• ✓Message content — all messages are end-to-end encrypted on your device. We never have access to plaintext.
• ✓Encryption keys — all key generation happens on your device. Private keys never leave your device.
• ✓Contact lists or social graph — we do not know who you talk to.
• ✓IP addresses — the relay server does not log IP addresses.
• ✓Device identifiers — we do not collect IMEI, Android ID, or advertising IDs.
• ✓Location data — unless you explicitly use the location-sharing feature.
• ✓Biometric data — biometric authentication is handled entirely by the Android operating system.

The HYVE relay server routes encrypted cells from sender to recipient. The relay sees only: (1) a one-time routing token used to forward the cell to the correct inbox, and (2) the encrypted cell content. The relay cannot decrypt any cell, link any two cells to the same conversation, or identify who is communicating with whom. Routing tokens are single-use and derived from cryptographic key material shared exclusively between you and your conversation partner — the relay has no access to this material.

HYVE includes an optional real-time location sharing feature. If you enable this feature, your device periodically encrypts your GPS coordinates and sends them to your conversation partner via the HYVE relay. Location data is encrypted end-to-end — we cannot read it. Location sharing is disabled by default and can be stopped at any time from within the app. We do not retain any location history on our servers.

HYVEGuard is a full-device VPN that routes your internet traffic through the HYVE relay to a trusted peer device. When using HYVEGuard, all traffic is encrypted into HYVE cells before reaching the relay. The relay cannot read your traffic. Your trusted peer exit node can see your outbound internet traffic in plaintext (as they are forwarding it on your behalf) — this is the same trust model as any VPN, except the exit node is a person you trust rather than a corporation. Use HYVEGuard only with trusted peers.

All message data is stored locally on your device, encrypted under your HYVE Vault keys. We do not back up your messages to any server. If you delete the app or reset your device, your messages are gone — we cannot recover them.

Your HYVE ID and public keys remain on the identity server until you request deletion. To delete your account and public key bundle, contact us at vibesoftwaresolutions@gmail.com with your HYVE ID.

Firebase (Google). We use Firebase Cloud Messaging for push notifications. FCM tokens are transmitted to Google servers as part of the FCM protocol. See Google's privacy policy.

Stripe. If you purchase a HYVE Pro subscription, payment is processed by Stripe. We do not store payment card data. See Stripe's privacy policy.

STUN servers (WebRTC). Voice and video calls use Google's public STUN servers to negotiate peer-to-peer connections. STUN servers see your IP address during call setup. If IP address privacy is critical to you, do not use the call feature.

HYVE is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided us with personal information, contact us and we will delete it.

You may request deletion of your HYVE ID and public keys at any time by contacting vibesoftwaresolutions@gmail.com. Since we hold minimal data, fulfillment is typically immediate.

We may update this policy as the app evolves. Material changes will be noted with an updated "Last updated" date at the top of this page. Continued use of the app after changes constitutes acceptance of the updated policy.

Vibe Software Solutions Inc.
vibesoftwaresolutions@gmail.com