The Zyptonite Service is a peer-to-peer communication service that enables users to chat with instant message, video and audio, and send files and share screens remotely.
We take privacy seriously. Our peer-to-peer architecture means you connect directly to the other party – the calls and messages, files, and other streaming data like screen sharing are not processed via our or any third party servers. This means that, unlike all server based messaging applications, we do not have access to the calls or messages, files, or other streaming data like screen sharing or the associated metadata. Since information regarding the communication is never generated in our peer-to-peer service, it is not, and cannot be gathered or stored by us or third parties. This is not the case with traditional server and cloud based systems that may be subject to data collection, retention, or stored communication preservation obligations. In rare or temporary occurrences, in order to expedite the establishment of connections or to deal with the legacy protocols and environments, communication traffic may be relayed through a relay service until peer-to-peer connection is established. Clear indication is displayed to user when connection is relayed.
Information We May Collect From You
Information We Collect
You provide certain personal data when choosing to use the Service, including by registering and creating a user account. You can register by providing us with your email address and/or by connecting your social media account to the Service. In connection with the registration, we collect certain personal data about you.
If you register by using email, we collect your email address. To the extent your email address contains your name, we also collect that. We do not collect any other personal information by default. We cannot verify the name you provided is your real name. Under the settings page you may provide additional personal data, including changing your user name, as well as choose a picture linked to your account. Should you provide such additional personal data such as your personal picture, the system collects that personal data about you. If you register via email, you are asked to generate a password. The password you provide to us, will be stored by us and protected with bcrypt.
If you register using your Facebook (“FB”) account, FB generates an app scoped user ID to us, which is not your FB user ID. We also collect your FB registered first name and last name and profile picture. We receive information about those of your FB friends who have also registered using the Service, unless you choose to opt out. We also collect your email address unless you choose to opt-out. We do not collect your age, gender, or other personal information.
However, you may choose to opt out from providing your email or granting access to your friends list. Since the Zyptonite Service is a messaging application, being able to link with your chosen social media contacts is for your own convenience. If you use a third party identity provider (e.g. LDAP), the password is only provided to you by such party. In such case we only hold a token to the user ID, but not the user ID itself.
We may also collect other personal data you may choose to share with use. For example, if you contact us via email for technical help or customer service, a record of this correspondence may be kept.
Information we do not collect
Zyptonite’s focus is on maximizing privacy of our customers’ communication. We are a peer-to-peer application without communication servers generating, processing or storing communication information. We do not collect names, emails, addresses, phone numbers, or other contact information from our users’ mobile address book or contact lists. The Service may also access the user specified files on your device in order to enable you to send and receive such files to other users of the Service. We do not collect information on your address book or contact lists. Zyptonite peer-to-peer software links users with other users using signaling servers to make the connection without us having awareness of potential communication between the parties.
Zyptonite peer-to-peer communication does not generate location, call duration, or other metadata regarding the user’s communication. In fact, we are not able to tell whether a communication between the users even took place. This is the power of peer-to-peer privacy.
The Purposes for Which We Use Personal Data
We use the personal data you provide to us to operate, maintain, develop, improve, and provide to you the features and functionality of the Zyptonite Service, and to communicate to you important product updates or new features. Unless otherwise specifically stated herein, we do not use any personal data to send commercial or marketing messages to you.
How We Disclose Data
We do not sell, lease, rent or otherwise disclose the personal data relating to our users to third parties unless otherwise stated below.
The Zyptonite Service makes your user name and the profile picture you have provided to us available to other users so they can search and request to connect with you.
We may disclose personal data, which may often be limited to your email address, to:
- Specific third party service providers and our business partners if we deem it necessary to perform, improve or maintain our Service, and in compliance with applicable laws.
- Public authorities, such as law enforcement, if we are legally required to do so or if we need to protect our rights or the rights of third parties;
- Our subsidiaries and affiliates;
- Other third parties, with your consent or as otherwise required or permitted by law.
In particular, please note that those users of the Service, whom you have accepted as your contacts, may see your presence in the Service, your status (online or offline) and any other personal data that you may voluntarily disclose on the Service. For example, if you choose to register via your social media account, you will be able to find your friends who are also registered users of the Service and vice versa.
Moreover, we may disclose information to third parties in an aggregate format that does not constitute personal data and does not allow the identification of individual users.
You have the following rights with respect to the personal data we hold about you:
- The right to know what data we hold about you: If you would like to know what personal data we hold about you, please contact us at firstname.lastname@example.org. We seek to promptly respond to your inquiry.
- The right to have incomplete, incorrect, outdated, or unnecessary personal data corrected, deleted, or updated. You have the means to correct, delete and update all personal data through the account settings of the Service. For further questions, please contact us at email@example.com.
- We do not use personal data about you to send commercial or marketing messages without your consent. We may, however, use your email address (if provided) without further consent for non-marketing or administrative purposes, including notifying you of major site or service changes, or for customer service purposes.
How We Store and Protect Information We Have about You
The security of the Service is very important to us. We take measures to protect personal data about you from unauthorized access or against loss, misuse or alteration by third parties. Moreover, the peer-to-peer communication architecture used by the Service means that all calls and messages you send are sent directly to the other party of the communication, and not to our servers.
Despite our efforts to limit the amount of personal data we collect about you to the minimum (typically an email address, your Zyptonite username, and Zyptonite password), our encryption efforts, and our efforts to store personal data collected through the Service in a secure operating environment that is not available to the public, we cannot guarantee the security of personal data during its transmission or its storage on our systems. Further, while we attempt to ensure the integrity and security of personal data, we cannot guarantee that our security measures will prevent third-parties such as so-called hackers from illegally obtaining access to personal data. We do not warrant or represent that personal data about you will be protected against, loss, misuse, or alteration by third parties. We believe the best safeguard against illegal breaches on sensitive information is to not collect that in the first place. You cannot gain access to something that doesn’t exist.
Third-Party Sites and Services
International Transfers of Personal Data
Some elements of the Service may be hosted in countries outside your own country. The laws applicable to the protection of personal data in such countries may be different from those applicable in your home country. In particular, if you are located within the European Union / European Economic Area, please note that personal data collected by us is transferred outside the European Union / European Economic Area. You consent to personal data about you being transferred outside your own country and, where applicable, outside the European Union / European Economic Area.
The Service is not directed to children under 13. We do not intend to collect personal data from children under 13. If you are under 13, please do not use the Service and do not send any information about yourself to us.
Your California Privacy Rights
Questions or Concerns?