exhale. was built around one principle: what you write is yours alone. We designed every part of this app so that your words pass through and disappear. This policy describes exactly what we do and do not do.
We do not collect your name, email address, phone number, or any personal information. There is no account. There is no profile. There is no login.
We do not store message content. Messages pass through our servers encrypted. Once delivered and read, they are permanently deleted. If undelivered after seven days, they are permanently deleted.
We cannot read your messages. The server processes encrypted data it cannot decrypt. Plaintext exists only momentarily during an automated content safety check, is never logged, and is immediately discarded.
A random device identifier generated on your device and stored only in your device's keychain. This identifier is used solely to prevent you from receiving your own message and to enforce the one-message-per-day limit. It is never associated with message content.
A push notification token, if you enable notifications. This token is used only to notify you when a message is available. It is not linked to your identity or message content.
Timestamps for rate limiting: when you last sent and when you last received. Nothing else.
Messages undergo an automated content safety check using third-party moderation services. This check scores content for harassment, threats, and other harmful material. The check is instantaneous, automated, and the content is never logged or stored by our servers. Messages that score above safety thresholds are silently discarded.
If the sender and receiver speak different languages, the message may be translated using Google Cloud Translation API. The message text is sent to Google solely for translation purposes, subject to Google Cloud's terms of service.
Messages are encrypted using AES-256-GCM. Encryption keys are generated per message and destroyed after delivery. At no point does any human have access to message content.
Undelivered messages: deleted after 7 days.
Delivered messages: deleted 1 hour after first read.
Server logs: contain only timestamps and delivery status. No content. No identifiers.
There is nothing to hand over because nothing is kept.
Apple Push Notification service (APNs) for delivery notifications.
OpenAI Moderation API and Google Perspective API for content safety.
Google Cloud Translation API for message translation.
These services receive only the minimum data necessary for their function. None receive your device identifier or any information that could identify you.
exhale. is not directed at children under 17. We do not knowingly collect information from children.
If this policy changes, the updated version will be posted here. The app does not collect contact information, so we cannot notify you directly. The date at the top of this page reflects the most recent update.
If you have questions about this policy, contact us at privacy@exhale.app
← back