Our Commitment to Privacy

NTsocial is engineered with user privacy as a foundational principle. We consider private communication to be a fundamental right. This Privacy Policy ("Policy") outlines the data practices of the NTsocial application ("the Application") and our dedication to protecting your privacy.

Core Privacy Principles

• No personal data collection — The Application does not collect, process, or store any personally identifiable information (PII) such as names, email addresses, or phone numbers.
• Serverless architecture — Communications occur directly on your device and through peer-to-peer connections; no central servers are used.
• No tracking or analytics — We do not employ analytics, telemetry, or user tracking mechanisms.

Information Stored by the Application

Data Stored Locally on Your Device

1. Identity Key
   • A cryptographic key pair generated on first launch.
   • Stored within your device's secure storage.
   • Enables you to maintain "favorite" peer relationships across sessions.
   • Never leaves your device.
2. Nickname
   • Your chosen or auto-generated display name.
   • Stored only on your device.
   • Shared with peers when you interact with them.
3. Message History (if enabled by a channel owner)
   • Messages are encrypted and stored locally on your device.
   • You can delete this history at any time.
4. Favorite Peers List
   • Public keys of peers you designate as favorites.
   • Stored on your device to facilitate recognition in future sessions.

Temporary Session Data

During an active session, the Application maintains limited operational data in memory, including:

• Active peer connections.
• Routing information required for message delivery.
• Cached messages for offline peers (retained for a maximum of 12 hours).

This information is volatile and is erased when the session ends.

Information Shared with Other Users

• Your chosen nickname.
• Your session-specific public key.
• Messages you send to public channels or directly to other users.
• Your approximate Bluetooth signal strength, solely for assessing connection quality.

Prohibited Data Practices

The NTsocial Application will never:

• Collect or request personally identifiable information.
• Track geographic location.
• Store user data on servers.
• Share user data with third parties.
• Utilize analytics, telemetry, or profiling technologies.
• Require user registration or the creation of an account.

Encryption and Security

All private message transmissions are protected by end-to-end encryption using the following cryptographic standards:

• Key Exchange: X25519
• Message Encryption: AES-256-GCM
• Digital Signatures: Ed25519
• Password-Protected Channels: Argon2id

User Rights and Data Control

• Data deletion: Triple-tap the logo within the Application to permanently remove all locally stored data.
• Session termination: Closing the Application immediately ends your presence on the network.
• No server-side accounts: Because no data is stored on servers, there is nothing to request for deletion from us.
• Data portability: Your data remains on your device unless you manually export it.

Required Permissions

The Application requires Bluetooth permissions to establish peer-to-peer communications. This permission is used exclusively for that purpose and does not access location data or perform tracking. You may revoke this permission at any time through your device's operating system settings.

Children's Privacy

The Application does not knowingly collect information from children. Because no personal information is collected from any user, age verification mechanisms are not implemented.

Data Retention Policy

• Messages: Removed from memory when the Application closes unless channel-based retention is enabled.
• Identity Key and Favorites List: Persist on your device until you delete the data or uninstall the Application.
• All other data: Exists only in volatile memory during an active session.

Changes to This Policy

We may amend this Policy as the Application evolves. Any modifications will be reflected in the "Last updated" date at the top of this Policy and will accompany subsequent releases of the Application.

Contact

For questions or concerns regarding this Privacy Policy, please reach out through the official feedback channels provided on our website.

隱私保護承諾

NTsocial 以維護使用者隱私為設計核心，並認知私人通訊為每位使用者之基本權利。本隱私權政策（下稱「本政策」）旨在揭露 NTsocial 應用程式（下稱「本應用程式」）之資料處理作業，以及我們對保障您隱私權之承諾。

核心隱私原則

• 不蒐集個人資料：本應用程式不會蒐集、處理或儲存任何足以辨識個人身分之資料，包括姓名、電子郵件地址或電話號碼等。
• 無伺服器架構：通訊活動僅於您的裝置及點對點連線間進行，不透過中央伺服器。
• 不設追蹤機制：本應用程式不實施任何分析、遙測或使用者追蹤技術。

本應用程式儲存之資訊

儲存在您裝置內的資料

1. 識別金鑰
   • 首次啟動時所產生之密碼學金鑰對。
   • 儲存於您裝置的安全儲存空間。
   • 用於於多次會話間維持「常用夥伴」的辨識。
   • 不會離開您的裝置。
2. 暱稱
   • 由您設定或系統自動產生之顯示名稱。
   • 僅儲存於您的裝置。
   • 與您互動之其他使用者得以看見該暱稱。
3. 訊息紀錄（如由頻道管理者啟用）
   • 訊息以加密形式儲存於您的裝置。
   • 您得隨時刪除該等紀錄。
4. 常用夥伴清單
   • 包含您指定之夥伴的公開金鑰。
   • 儲存於您的裝置，以利於後續會話辨識。

暫存會話資料

於會話進行期間，本應用程式僅於記憶體中保留下列必要營運資訊：

• 目前的使用者連線狀態。
• 訊息傳遞所需的路由資訊。
• 離線夥伴的暫存訊息（最長保留 12 小時）。

上述資訊皆屬揮發性資料，於會話結束後立即刪除。

與其他使用者分享之資訊

• 您所設定的暱稱。
• 會話期間之公開金鑰。
• 您於公開頻道或直接訊息中傳送的訊息內容。
• 為評估連線品質所需的藍牙訊號強度近似值。

禁止之資料處理行為

本應用程式在任何情形下均不會：

• 蒐集或要求提供足以辨識個人身分之資訊。
• 追蹤地理位置。
• 將使用者資料儲存於伺服器。
• 與第三人分享使用者資料。
• 導入分析、遙測或個人輪廓建構技術。
• 要求註冊帳號或建立使用者資料庫。

加密與安全措施

所有私人訊息傳輸均採端對端加密，並採用以下密碼學標準：

• 金鑰交換：X25519
• 訊息加密：AES-256-GCM
• 數位簽章：Ed25519
• 受密碼保護之頻道：Argon2id

使用者權利與資料控制

• 資料刪除：於本應用程式中快速點擊標誌三次，即可永久刪除所有儲存在裝置上的資料。
• 會話終止：關閉本應用程式即視為結束您在網路上的存在。
• 無伺服器端帳號：因未於伺服器儲存資料，您無需向我們提出刪除申請。
• 資料可攜性：除非您自行匯出資料，所有資訊皆維持於您的裝置之內。

必要權限

本應用程式需使用藍牙權限以建立點對點通訊。該權限僅限用於前述目的，不會存取定位資訊或執行追蹤作業。您得隨時透過裝置作業系統之設定介面撤銷此權限。

兒童隱私

本應用程式不會知情蒐集兒童資訊。由於並未蒐集任何個人資訊，故未實作年齡驗證機制。

資料保存政策

• 訊息：除非頻道啟用保留功能，否則於本應用程式關閉時即自記憶體移除。
• 識別金鑰與常用夥伴清單：持續儲存在您的裝置上，直至您刪除資料或移除本應用程式。
• 其他資料：僅於會話進行期間暫存於記憶體。

本政策之修改

隨著本應用程式功能調整，本政策得予修訂。任何變更將反映於本政策上方之「最後更新日期」，並隨後續版本一併公告。

聯絡方式

若您對本隱私權政策有任何疑問或需求，請透過本網站提供之正式回饋管道與我們聯繫。