Whisper2

Privacy Policy

Last updated: January 27, 2026

Introduction

Whisper2 ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we handle your information when you use our messaging application.

By using Whisper2, you agree to the practices described in this policy. Our core principle is simple: we collect as little data as possible, and what we do handle is encrypted end-to-end.

Information We Do NOT Collect

Whisper2 is designed with privacy as its foundation. We explicitly do NOT collect:

  • Your phone number or email address
  • Your real name or personal identity
  • The content of your messages (they are end-to-end encrypted)
  • Your contacts or address book
  • Your location data
  • Your IP address (we do not log connections)
  • Metadata about who you communicate with
  • Usage analytics or behavioral data

Information Stored Locally on Your Device

The following information is stored locally on your device and is never transmitted to our servers:

  • Your Whisper ID: A randomly generated identifier that serves as your unique address
  • Your cryptographic keys: Public and private keys used to encrypt and decrypt messages
  • Your recovery phrase: 12 words used to recover your account on a new device
  • Your messages: All message history is stored encrypted on your device only
  • Your contacts: Contact information is stored locally and never shared with us

End-to-End Encryption

All messages sent through Whisper2 are end-to-end encrypted using industry-standard cryptographic algorithms:

  • Only you and your intended recipient can read your messages
  • We cannot access the content of your messages, even if compelled by law
  • No third party can decrypt your communications
  • Your encryption keys are generated and stored only on your device

Data Security

We employ industry-standard cryptographic protocols to protect your communications:

  • X25519 for key exchange (Curve25519 elliptic curve)
  • XSalsa20-Poly1305 for authenticated encryption
  • Ed25519 for digital signatures and authentication
  • Cryptographically secure random number generation for all key material

Message Relay

Our servers only relay encrypted messages between users. When a recipient is offline, we temporarily store encrypted messages for up to 72 hours, after which they are automatically deleted. We cannot read these messages as they are encrypted with keys we do not possess.

Account Recovery

Your 12-word recovery phrase is the only way to recover your account on a new device. We do not have access to this phrase and cannot recover it for you. If you lose your recovery phrase and your device, your account cannot be recovered. Please store your recovery phrase securely.

Children's Privacy

Whisper2 is not intended for use by children under the age of 13. We do not knowingly collect any information from children under 13. If you believe a child under 13 is using our service, please contact us.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date at the top.

Contact Us

If you have any questions about this Privacy Policy, please contact us at:

privacy@whisper2.aiakademiturkiye.com