Control who sees what, on every thread.

What's encrypted

• Direct messages are end-to-end encrypted by default. We can't read them, and neither can anyone else outside the chat.
• Everything in transit uses TLS. In production we pin certificates — connections fail closed on a fingerprint mismatch, not silently downgrade.
• Sensitive identifiers we have to keep (e.g. tax IDs) are encrypted with AES-256-GCM before they touch the database.

Who can find you

By default, your full profile is visible only after a bounty is awarded or you accept an introduction. Your phone number stays private inside Friendly — clients message you in-app, never via SMS, until you choose to share it.

Location features (the Nearby tab, attaching a place to a meeting) are opt-in and use only coarse location, never tracked in the background.

Block & report

From any conversation menu, you can:

• Mute — silence notifications without telling the other person.
• Block — prevent the person from messaging, applying to your bounties, or seeing your profile. They are not notified.
• Report — flag spam, abuse, or fraud. A real person on our team reviews reports within 24 hours.

What we never do

• We never train AI on your messages, files, or profile content. Off, permanently.
• We never sell your data to advertisers.
• We can't hand over message contents we were never able to read — subpoena-resistant by design.

Next

• /security — the full privacy picture.
• Account & security — sign-in, sessions, deletion.
• Report a vulnerability: email hello@friendly.mobi with “security” in the subject.