Boxenger Privacy Policy

Effective Date: [Insert Date] | Last Update: [Insert Date]

[cite: 3, 4]

1. Our Commitment: Boxenger is built to protect your privacy. We do not collect or store personal information, and we cannot read your messages. Your data belongs to you. [cite: 5, 6, 7]

2. What We Collect

We do not collect contact lists, phone numbers, emails, IP addresses (beyond transient routing), or device identifiers like IMEI/UDID. [cite: 29]

Data Type [cite: 9]	Description [cite: 10]	Purpose [cite: 11]	Retention [cite: 12]
Anonymous ID user [cite: 13]	Random identifier generated upon installation, not linked to personal info. [cite: 14]	Enables message delivery and topic association. [cite: 15]	Deleted upon app deletion. [cite: 16]
Encrypted Message Content [cite: 17]	Messages are stored encrypted; unreadable by us. [cite: 18]	Routing and delivery. [cite: 19]	Remain stored but become orphaned and fully anonymous after app deletion. [cite: 20]
Pseudonymous per conversation [cite: 21]	User-chosen display name within a topic. [cite: 22]	Enables identification within chats. [cite: 23]	Deleted when conversation is deleted. [cite: 24]
Metadata [cite: 25]	Timestamps, topic IDs. [cite: 26]	Service performance and integrity. [cite: 27]	Retained as long as needed for functionality. [cite: 28]

3. How Encryption Works

Messages are encrypted on your device and can only be decrypted by participants’ devices. We never hold the keys. Even if our servers are compromised, message content remains unreadable. [cite: 30, 31, 32]

4. Data Processing and Storage Location

4.1. All data is stored securely on Google Cloud Firestore (EU region), under high security and GDPR-compliant infrastructure. [cite: 34]
4.2. We do not transfer data outside the European Economic Area. [cite: 35]

5. Encryption and Security

5.1. All conversations are end-to-end encrypted. Only participants hold the decryption keys. [cite: 37]
5.2. We cannot access, read, or modify message content. [cite: 38]
Note: No technology can guarantee absolute security; use is at your own risk. [cite: 39]

6. Deletion and Retention

6.1. Uninstalling Boxenger permanently destroys your anonymous user ID. [cite: 41]
6.2. Remaining messages become technically non-attributable. [cite: 42]
6.3. Deleting topics/messages within the app removes them from our servers. [cite: 43]
6.4. Encrypted messages are retained for a maximum of six (6) months before automatic and permanent deletion.

7. Legal Basis for Processing (GDPR)

Under Article 6(1) of the GDPR, we rely on: [cite: 46, 47]

Article 6(1)(b): Necessary to provide the requested messaging service. [cite: 48]
Article 6(1)(f): Legitimate interest in maintaining a secure platform. [cite: 49]

User consent is not required for ordinary operation as we do not process identifiable personal data. [cite: 50]

8. Your Rights (GDPR)

You retain the right to: [cite: 51, 52]

Request information about data practices. [cite: 53]
Request deletion of residual data. [cite: 54]
Receive data in a structured, portable format. [cite: 55]
Lodge a complaint with a Data Protection Authority (e.g., Hellenic DPA). [cite: 56]

9. Third-Party Services

9.1. We use Google Cloud Firestore as a data processor (GDPR-compliant). [cite: 58, 59]
9.2. No other third-party analytics, tracking, or advertising services are used. [cite: 60]

10. Advertising

Presently, Boxenger does not collect data for advertising or display any ads. [cite: 62] If ads are introduced in the future, we will request explicit opt-in consent before any data collection occurs. [cite: 67, 70]

11. Contact

For legal or privacy inquiries: privacy@boxenger.gr [cite: 75, 76]

App Onboarding Summary

🔒 Your privacy, protected. [cite: 88]
Boxenger is designed for private, anonymous conversations. No account, no phone number, no email. Data stays in the EU and is deleted permanently when you remove the app. [cite: 89, 90, 93, 94]