1. Zero Data Collection Architecture
Layergram is built on a strict "Zero Knowledge" and "Zero Data" architecture. We do not collect, store, transmit, or process any personal data, messages, metadata, or cryptographic keys. We do not operate central servers to route your messages.
2. Cryptographic Keys and Local Storage
All cryptographic keys (including X25519 pairs and AES-GCM symmetric keys) are generated locally on your device. They never leave your device. All encrypted message payloads and metadata (such as message IDs and timestamps) stored within the app are kept in a heavily encrypted local database.
3. App Permissions
Layergram requests only the permissions strictly necessary to function locally on your device:
- Clipboard: Required to seamlessly copy and paste cover messages and encrypted payloads to and from your transport apps.
- Biometrics/Device Credentials: Required only locally to lock the app and protect your keys from physical adversaries. We do not have access to your biometric data.
- Camera (Optional): Required only if you choose to scan a QR code to quickly share your public key with a contact.
4. Third-Party Analytics and Telemetry
Layergram contains NO third-party trackers, NO analytics SDKs, NO crash reporting tools, and NO advertising frameworks. Your usage data remains completely private.
5. Website
Our website (layergram.app) is completely static. We do not use tracking cookies, analytics pixels, or any profiling tools.