Legal · Privacy
Privacy Policy
Mytherra Messenger is built around a simple principle: the operator should know as little about you as possible. The relay server cannot read your messages, and we do not run any tracking, analytics, or advertising. This page explains exactly what we do and don't process.
1. What we do NOT collect
- Message content — all chats are end-to-end encrypted (X25519 ECDH + AES-GCM-256). The relay server only sees encrypted bytes.
- Real names, phone numbers, email addresses (unless you voluntarily set a display name)
- Tracking pixels, third-party analytics, advertising identifiers
- Browsing behaviour, click trails, any session telemetry
2. What we technically process
- Public key — randomly generated on your device on first signup. Used as your routing identifier on the relay.
- Display name + avatar — only if you set them in Settings. Visible to your chat partners.
- Encrypted message envelopes — temporarily stored on the relay (max 30 days / 1000 messages) for offline delivery.
- Push subscription endpoint — if you enable browser push notifications. Used only to wake your device when a new message arrives. Stored on the relay until you disable push.
- Connection metadata — your IP address is visible to the relay server during a WebSocket session, for the duration of that session. We do not log it persistently.
3. What stays only on your device
- Your recovery phrase (12/24 words) — never transmitted anywhere
- Your private keys (MYT + MYTC chain)
- Decrypted message history
- App settings, contact list, custom wallpapers
4. Blockchain transactions
Wallet operations (sending MYT/MYTC, staking, claiming faucet) are written to the respective public blockchains and are visible to anyone. Your wallet address is pseudonymous but can potentially be linked to you if you publicly disclose it.
5. Push notifications
Push notifications are sent via your browser's native push provider (FCM for Chrome/Android, APNs for Safari/iOS). The notification payload contains only the sender's display name and a generic "new message" body — never the message content.
6. Your rights (GDPR / DSGVO)
Since we hold almost no personal data, most GDPR rights are easy to exercise:
- Deletion: clear your browser storage / app data → all keys and message history are gone forever (we cannot recover them). To remove your push subscription server-side, disable notifications in Settings.
- Access / Portability: your message history and wallet keys are already on your device — Settings → Show recovery phrase exports them.
- Objection: stop using the service. There is no remarketing or profiling to opt out of.
7. Hosting
Relay servers are hosted on virtual servers in Germany (IONOS). A standard data-processing agreement applies. The MYTC blockchain consensus runs on the same infrastructure as part of Phase A federation.
8. Contact
Questions about this policy: hello@mytherrablockchain.org
Last updated: May 2026