FaradayWire Privacy Policy

Who We Are

FaradayWire is provided by Faraday Foundry LLC (“we,” “us,” “our”), the data controller for personal information processed under this policy. Contact: support@faradaywire.com

Overview

FaradayWire is a secure messaging app built for privacy. We minimize data collection and use end-to-end encryption (E2EE) so that message content is unreadable to us. This Privacy Policy explains what we collect, how we use it, and your choices.

Data We Cannot Access (E2EE)

Private message content (texts, photos) is end-to-end encrypted. We do not possess your decryption keys and cannot decrypt your private messages.

Information We Collect

• Email address – for account creation and authentication.
• Display name – chosen by you and visible to people you contact.
• Public encryption key (e.g., RSA-2048) – stored so others can encrypt messages to you.
• Technical diagnostics – crash logs and performance metrics to improve reliability (no message content).
• Device & app metadata – e.g., app version, OS version, device model; used for compatibility and debugging.
• Network metadata (limited) – e.g., IP address at sign-in/security events to protect the service.
• Push notification tokens – to deliver notifications (no message content in notifications).
• Support communications – emails or reports you choose to send us.

We do not collect your contacts, location, health data, or advertising identifiers.

Sources

We obtain information directly from you (account setup, support), from your device (technical metadata), and from our service providers (e.g., Firebase diagnostics).

How We Use Information

• Provide and maintain the service (authentication, encrypted message routing, notifications).
• Protect users and the platform (security, fraud and abuse prevention, troubleshooting).
• Improve performance and reliability (diagnostics, app analytics without message content).
• Comply with legal obligations and enforce our Terms/EULA.

Legal Bases (EEA/UK only)

• Contract – to provide the app you requested.
• Legitimate interests – to secure and improve the service.
• Legal obligation – to comply with applicable laws.
• Consent – where required (you can withdraw at any time).

Sharing and Disclosure

We do not sell or “share” personal information as “share” is defined by the California Consumer Privacy Act (CPRA). We disclose data to:

• Service providers / processors (e.g., Google Firebase for auth, database, storage, diagnostics; Apple/Google for push notifications) under contracts limiting their use of data.
• Compliance and safety – to comply with law, respond to lawful requests, or protect our users, platform, or rights. Because messages are E2EE, we cannot disclose message content we cannot decrypt.
• Business transfers – in the event of a merger, acquisition, or asset sale, subject to this policy or equivalent protections.

International Transfers

We may process and store data in the United States and other countries. Where required, we use appropriate safeguards (e.g., Standard Contractual Clauses) for international transfers.

Retention

• Account data (email, display name, public key) – kept while your account is active; deleted upon account deletion, subject to brief backup/archival latency.
• Diagnostics – retained for a limited period necessary to improve reliability and security.
• Legal holds – we may retain certain records if required by law or to resolve disputes.

Security

We use technical and organizational measures appropriate to the risk, including E2EE for private messages, TLS in transit, and restricted access to systems. No system is 100% secure.

Children’s Privacy

The service is not directed to children under 13. We do not knowingly collect personal information from children under 13. If you believe a child has provided us personal information, contact us to request deletion.

Your Rights & Choices

California (CPRA): You may request access, correction, deletion, and information about our data practices, and you have the right to non-discrimination. We do not sell or “share” personal information; therefore, no opt-out of sale/sharing is required.

EEA/UK (GDPR): You may request access, rectification, erasure, restriction, portability, and object to certain processing. You may lodge a complaint with your supervisory authority.

To exercise rights, email support@faradaywire.com. We may need to verify your request. If we process data on behalf of another controller, we’ll direct you to that controller where appropriate.

Do Not Track / Cookies

We do not respond to “Do Not Track” signals. We do not use advertising cookies. Diagnostics are limited to service operation and reliability.

Changes to This Policy

We may update this policy. We’ll update the “Effective date” and, for material changes, provide notice in-app or by email where appropriate.

Contact

Questions or requests: support@faradaywire.com
Faraday Foundry LLC

Controller Information

Controller: Faraday Foundry LLC, a Georgia, USA company.