Privacy Policy

Not finished!

Summary

• Contact: [email protected]
• Tensamin does not store any messages or files, they are stored E2EE on your Iota (self/third‑party hosted).
• No cookies. No analytics. Data kept until you delete your account.
• We do not sell or share personal information.

What this covers

• Tensamin at https://tensamin.net on Web, Desktop and (in the future) Mobile.
• Components:
  • Iota: user or third‑party hosted storage for E2EE messages, files and settings.
  • Omikron: relay/reverse proxy to avoid IP exposure, no logging and no data stored.

Data we process

1. Account and profile (stored in our auth DB, needed to provide the service)
   • Exact schema: https://github.com/Tensamin/AuthServer/blob/main/db.ts#L149-L161
   • Includes: user id, public key, private key hash, Iota id, reset token, username, display name, avatar, description, status, created timestamp, subscription level and expiry.
2. Contact emails
   • Emails sent to [email protected]. Stored for up to 24 months or until resolved.
3. E2EE content
   • Messages, files, and settings are E2EE (end‑to‑end encrypted) on the Iota and your device. We cannot access plaintext.
   • Routing metadata (e.g. sender/recipient identifiers) is exchanged when using the Omikron but it does not log or store it.
4. Technical and analytics
   • Analytics: None.
   • Error tracking: None.
5. Cookies and storage
   • Cookies: None.
   • IndexedDB for settings and caches.

Purposes and legal bases (GDPR)

• Provide and secure the service (Contract, Legitimate interests).
• Communications and support (Legitimate interests, Consent where required).
• Compliance with law (Legal obligation).
• Payments using Stripe (future) when enabled (Contract, Legal obligation).

E2EE and keys

• Keys are currently generated by the Iota (may move to client). You are responsible for backing up your private key.
• If a third‑party Iota generates or retains your private key, they could decrypt your content. Prefer self‑hosting or generating your private key and then migrating to another Iota.
• The private key hash (SHA-256) verifies authenticity. We never store your plaintext private key.

Omikron relay

• Connects you to other users and your own Iota
• Hides your IP from other users and acts as a reverse proxy so you don’t need to open ports on your firewall. Communication is not logged or stored.
• You may choose to not use a Omikron (future option), which may expose your IP to peers.

Sharing and processors

• We do not sell or share personal information for cross‑context advertising.
• Service providers (current/planned):
  • Hosting: Own servers (EU)
  • CDN (future): Cloudflare (Global) https://www.cloudflare.com/privacypolicy/
  • CI (future): GitHub Actions (US/EU) https://docs.github.com/en/site-policy/privacy-policies/github-privacy-statement
• Iota hosts
  • If you use a third‑party Iota provider, they process your encrypted content and settings. Review their privacy terms.

International transfers

• Hosting region: EU. Transfers outside EEA/UK: No.
• If future providers transfer data internationally, we will use appropriate safeguards (e.g., SCCs) and update this policy.

Security

• Transport happens over HTTPS and WSS with HSTS.
• Content on the Iota is fully E2EE.

Account deletion

• Profile data is kept until account is deleted.
• Deletion happens inside your Iota, this takes a few seconds. No backups remain.

Age Requirement

• Minimum age: EU/UK 16; US 13; other regions 16. Parental consent for minors is not supported.

Law enforcement and transparency

• We require lawful process and will notify users unless legally prohibited.
• User table schema: https://github.com/Tensamin/AuthServer/blob/main/db.ts#L149-L161

Changes

• Changes will get a notice on the app homepage

Contact

• Methanium, TBD, TBD
• [email protected]
• CEO: ???