Privacy Policy
Wiltkey is a decentralized, ephemeral messaging application built to prioritize user privacy. Our design philosophy is simple: we cannot sell, share, or lose what we do not collect.
Zero-Account Identity & Data Minimization
Wiltkey does not require registration. To use the application, you do not need to provide:
- Phone numbers
- Email addresses
- Real names or nicknames
- Social media handles
Cryptographic identities (Ed25519 public/private keys) are generated purely locally on your device. We do not store, register, or manage these keys on any central registry.
Local Encryption and Local Storage
All of your contacts, message logs, metadata, and active cryptographic keys are stored directly on your physical device in an encrypted SQLite database.
- • PIN-Derived Encryption: Your local database is encrypted using a key derived from a personal PIN you configure during app setup.
- • PIN Attempt Limiting (Local Wipe): If an incorrect PIN is entered 5 consecutive times, Wiltkey will immediately delete the local database files and encryption keys. This is a local protection mechanism to guard against simple physical device access and will not prevent recovery if the device storage was already cloned or imaged prior to the wipe.
- • Manual Nuke: You can choose to completely nuke any individual chat channel or the entire application at any time, wiping all corresponding local database files instantly.
- • Media & Ephemerality: Wiltkey blocks in-app screenshot captures and allows you to toggle image download permissions for individual recipients. Messages can also be set to delete automatically based on a custom expiration timer.
Relay Servers and Routing
Wiltkey uses open-source message-forwarding servers called Relays to route encrypted packets when you are not in direct physical range.
- • RAM-Only Transience: Default relays operated by ArtFacility run purely in-memory (RAM) using Redis. We do not write message traffic to persistent disk logs, nor do we record metadata, access logs, or client IP addresses on our servers.
- • End-to-End Encryption: Because all payload packets are fully encrypted using end-to-end cryptography, relays cannot read your messages or access your media. Relays only see blind forwarding envelopes.
- • Self-Hosting: Since Wiltkey's relay code is open-source, you are encouraged to host your own private or public relays, bypassing our routing servers completely.
Alpha Program & Tester Email Collection
To distribute the pre-release build through the Google Play Store, we collect developer-authorized emails via Google Forms.
- • Purpose: Emails are collected solely to register you for the Google Play internal test track.
- • Management: This email data is stored securely in Google Forms and linked Google Sheets. It is never sold, shared, or used for advertising.
- • Retention: All collected signup emails will be deleted permanently after the testing program concludes.
Telemetry, Platform Services, & Independent Auditing
Wiltkey does not integrate third-party crash loggers, analytics, or behavioral trackers. Debugging logs generated in the app are kept locally and must be manually copied by the user to be sent to the developer.
However, please be aware that platform-level telemetry may apply:
- Google Play Store: If you download Wiltkey from Google Play, your installation is subject to Google’s standard developer platform analytics, license checks, and automated crash reporting.
- GitHub Builds (Bypass): If you wish to operate entirely outside of Google Play Services and play-store tracking, you can audit, compile, and build the client yourself from the open-source code available on GitHub.
Children's Privacy
Because Wiltkey is a local-first messaging client that requires physical in-person pairing, there are no remote registration systems, and we collect no personal data from any user (including children). However, we do not knowingly market or offer the app directly to children under 13, and encourage parental guidance for real-world proximity contact exchanges.
Contact Information
For inquiries regarding this Privacy Policy, the zero-data architecture, or the open-source codebase, contact ArtFacility at: