Privacy Policy

Last updated: December 2026 | Effective: December 2026

1. Introduction

This Privacy Policy explains how OSHI ("App", "Service", "we", "us", "our"), developed by Hugo Moriceau / Moriceau Lab, handles information when you use our application.

OSHI was built with privacy as a fundamental design principle. Unlike traditional messaging apps, OSHI's architecture makes data collection technically impossible.

2. Data Controller

Hugo Moriceau / Moriceau Lab, Switzerland

Email: legal@oshi-messenger.org

3. Information We DO NOT Collect

OSHI does NOT collect:

Data Type	Collected?
Phone numbers	— No
Email addresses	— No
Names or personal identifiers	— No
Contact lists	— No
Message content	— No (encrypted)
Call content	— No (encrypted)
Metadata (who, when, how often)	— No
Location data	— No
IP addresses	— No
Device identifiers	— No
Usage analytics	— No
Advertising identifiers	— No
Cookies or tracking	— No

4. Data Stored Locally on Your Device

OSHI stores the following data only on your device:

• Cryptographic Keys: Your identity key pair (private and public keys)
• Contacts: Public keys of your contacts
• Messages: Your encrypted message history
• Media: Photos, videos, and files you send/receive
• Settings: App preferences and configurations

This data is stored in encrypted form on your device and never transmitted to us. If you delete the app, this data is permanently deleted.

5. End-to-End Encryption

All communications in OSHI are protected by end-to-end encryption:

• Encryption Standard: AES-256-GCM for message encryption
• Key Exchange: X25519 (Curve25519) for key agreement
• Protocol: Double Ratchet algorithm for forward secrecy

This means:

• Messages are encrypted on your device before transmission
• Only the intended recipient can decrypt messages
• We have no access to encryption keys
• We cannot read, intercept, or recover your communications
• We cannot comply with requests to provide message content

6. Message Delivery Methods

6.1 Mesh Network (Direct)

When users are nearby, messages travel directly between devices via Bluetooth/WiFi. No servers are involved, and no data passes through our infrastructure.

6.2 IPFS Storage (Fallback)

When recipients are not nearby:

• Messages are encrypted before upload
• Encrypted data is stored on IPFS (decentralized storage)
• Only the intended recipient can decrypt
• Messages are automatically deleted after 30 days
• No metadata links messages to identities

6.3 Voice Call Relay

For voice calls when users are not on the same mesh network:

• Audio is encrypted end-to-end on your device
• Our relay server only routes encrypted packets
• The server cannot decrypt or listen to calls
• No call logs or metadata are stored

7. Third-Party Services

OSHI uses the following third-party services:

7.1 IPFS / Pinata

Purpose: Decentralized storage for encrypted messages. Data shared: Only encrypted blobs (unreadable without keys).

7.2 Apple App Store

Purpose: App distribution. Data shared: Standard App Store analytics (anonymous, aggregated).

We do NOT use:

• Google Analytics or any analytics services
• Facebook SDK or social media integrations
• Advertising networks
• Crash reporting services that collect user data

8. Data Sharing

We do not share any data because we do not have any data to share.

In response to legal requests:

• We cannot provide message content (encrypted, no access)
• We cannot provide user lists (we don't have any)
• We cannot provide metadata (we don't collect any)
• We can only confirm that we have no data

9. Data Retention

• On your device: Data remains until you delete it or the app
• IPFS messages: Automatically deleted after 30 days
• Our servers: We store nothing

10. Your Rights

Under GDPR, Swiss DPA, and other privacy laws, you have rights including:

• Right to Access: We have no data about you to provide
• Right to Rectification: N/A - no data to correct
• Right to Erasure: Delete the app to remove all local data
• Right to Portability: Export your data from app settings
• Right to Object: N/A - no processing to object to

11. Children's Privacy

OSHI is not intended for users under 18 years of age. We do not knowingly collect any information from children. Since we collect no data, we have no way to verify ages or delete children's data.

12. International Data Transfers

Since we don't collect personal data, there are no international data transfers to disclose. Encrypted messages stored on IPFS may be distributed globally, but this data is encrypted and cannot be read by anyone except the intended recipient.

13. Security

We protect your privacy through technical architecture:

• End-to-end encryption for all communications
• Zero-knowledge design
• No central database of user information
• Open cryptographic standards (X25519, AES-256-GCM)

Note: The App has not undergone a third-party security audit. While we use industry-standard encryption, we cannot guarantee absolute security.

14. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date. Material changes may be notified through the App.

Our core commitment to zero data collection will never change.

15. Legal Basis for Processing (GDPR)

Since we do not process personal data, no legal basis is required. The minimal technical data processed during message relay is:

• Encrypted and unreadable
• Not linked to any identity
• Automatically deleted
• Processed based on legitimate interest in providing the service

16. Data Protection Officer

Given our zero-data architecture, we have not appointed a formal DPO. For privacy inquiries, contact:

Email: legal@oshi-messenger.org

17. Supervisory Authority

If you believe your privacy rights have been violated, you have the right to lodge a complaint with:

Federal Data Protection and Information Commissioner (FDPIC), Switzerland

www.edoeb.admin.ch

18. Contact Us

For any questions about this Privacy Policy:

Email: legal@oshi-messenger.org
Website: https://oshi-messenger.org