Privacy Policy

1. Introduction

Welcome to Hush ("we," "our," "us," or the "App"). This Privacy Policy describes how Hush handles information in relation to our mobile application available on iOS and Android platforms.

Hush is an end-to-end encryption utility designed to protect your privacy. We are committed to transparency about our data practices, which can be summarized simply: we don't collect your data.

By using Hush, you agree to the terms outlined in this Privacy Policy. If you do not agree with our policies and practices, please do not use our App.

2. Information We Collect

2.1 Personal Information

We do not collect any personal information. This includes but is not limited to:

• Name, email address, phone number, or other contact information
• Account credentials (we don't have user accounts)
• Payment information (the App is free)
• Location data
• Device identifiers or advertising IDs
• IP addresses
• Biometric data

2.2 Usage Data

We do not collect usage data or analytics. We do not track:

• How you use the App
• Features you access
• Time spent in the App
• Crash reports or error logs
• Performance metrics

2.3 Content Data

We do not have access to your content. All messages, encryption keys, and QR codes are:

• Processed locally on your device
• Never transmitted to our servers (we don't have servers)
• Never stored in cloud services
• Completely under your control

3. How We Use Information

Since we do not collect any information, we do not use, process, or analyze any data about you or your usage of the App.

4. Device Permissions

4.1 Camera Access

Hush requires access to your device's camera for the following purpose:

• QR Code Scanning: To scan QR codes containing encryption keys for secure message decryption

Important: Camera access is processed in real-time on your device. No images, videos, or camera feeds are captured, recorded, stored, or transmitted. The camera is used solely for live QR code recognition.

4.2 Storage Access

The App may store encrypted data locally on your device for functionality purposes. This data never leaves your device and is protected by your device's security features.

4.3 Permission Management

You can manage or revoke permissions at any time through your device settings. Note that denying certain permissions may limit App functionality.

5. Data Sharing and Disclosure

We do not share your data because we don't have it. Specifically:

• Third Parties: We do not share data with third-party service providers, advertisers, or analytics companies
• Business Transfers: In the event of a merger or acquisition, there would be no user data to transfer
• Legal Requirements: We cannot comply with data requests from law enforcement or government agencies because we do not possess user data
• Affiliates: We do not share data with affiliated companies

6. Data Security

The security of your data is paramount. Since Hush operates entirely on your device:

• No Server Vulnerabilities: We don't have servers that can be hacked or breached
• No Data Leaks: We cannot leak data we don't collect
• Device Security: Your data security depends on your device's security features (passcode, biometric authentication, encryption)
• Encryption Keys: You are responsible for securely managing your encryption keys. Lost keys cannot be recovered

Best Practices: We recommend keeping your device updated, using strong device passwords, and storing encryption keys securely.

7. Data Retention

We do not retain any user data because we do not collect it. Any data created within the App (encrypted messages, keys) is stored locally on your device and can be deleted by you at any time by:

• Clearing the App's data through device settings
• Uninstalling the App
• Manually deleting content within the App

8. Your Rights and Choices

8.1 General Rights

Under various privacy laws (GDPR, CCPA, LGPD, etc.), you may have rights including:

• Right to Access: Not applicable - we don't store your data
• Right to Deletion: You control all data on your device
• Right to Correction: You can modify any local data directly
• Right to Data Portability: All your data is already on your device
• Right to Object: Not applicable - we don't process your data
• Right to Opt-Out: Not applicable - we don't collect data to opt out from

8.2 California Privacy Rights (CCPA)

California residents have specific rights under the California Consumer Privacy Act. However, since we do not collect personal information, these rights are not applicable to Hush users.

8.3 European Privacy Rights (GDPR)

European Union residents have rights under the General Data Protection Regulation. Since we do not process personal data, GDPR obligations regarding data processing do not apply to Hush.

8.4 Brazilian Privacy Rights (LGPD)

Brazilian residents have rights under the Lei Geral de Proteção de Dados. As we do not collect or process personal data, LGPD data processing requirements do not apply.

9. Children's Privacy

Hush does not knowingly collect information from children under the age of 13 (or the applicable age in your jurisdiction). Since we don't collect any data from any users, we do not collect data from children.

The App is not specifically directed at children, but may be used by individuals of any age. Parents and guardians should supervise children's use of encryption tools.

10. International Data Transfers

Since all data processing occurs locally on your device and we do not transmit data to servers, there are no international data transfers. Your data never leaves your device through our App.

11. Third-Party Services and Links

Hush does not integrate with or use:

• Third-party analytics services (e.g., Google Analytics, Firebase)
• Advertising networks
• Social media platforms
• Cloud storage services
• Payment processors
• Customer support platforms

If the App contains links to external websites or services, we are not responsible for their privacy practices. We encourage you to review their privacy policies.

12. Cookies and Tracking Technologies

Hush does not use cookies, web beacons, tracking pixels, or similar technologies. As a native mobile application without server communication, there are no tracking mechanisms.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. When we make changes:

• We will update the "Last Updated" date at the top of this policy
• Material changes will be communicated through the App or app store update notes
• Continued use of the App after changes constitutes acceptance of the updated policy

We encourage you to review this Privacy Policy periodically.

14. Legal Basis for Processing (GDPR)

For users in the European Economic Area, while we do not process personal data, if we did, our legal basis would be:

• Consent: Not applicable - we don't collect data requiring consent
• Legitimate Interest: Not applicable - we don't process data
• Contractual Necessity: Not applicable - no user agreements requiring data

15. Do Not Track Signals

Hush does not track users, so Do Not Track (DNT) signals are not applicable. We respect your privacy by default and do not engage in any tracking activities.

16. Data Breach Notification

Since we do not collect, store, or transmit user data, there is no risk of a data breach involving your personal information through our services. Your data security depends entirely on your device security.

17. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

For privacy-related requests, please include:

• Your specific question or concern
• The platform you're using (iOS/Android)
• App version (found in app settings)

18. Dispute Resolution

Any disputes arising from this Privacy Policy will be resolved through:

• Good faith negotiations between parties
• Mediation if necessary
• Applicable jurisdiction as determined by your location and applicable law

19. Severability

If any provision of this Privacy Policy is found to be unenforceable or invalid, that provision will be limited or eliminated to the minimum extent necessary, and the remaining provisions will remain in full force and effect.

20. Entire Agreement

This Privacy Policy constitutes the entire agreement between you and Hush regarding the privacy aspects of your use of the App and supersedes any prior agreements or understandings.