Security & privacy
Locked — only you and the people you work with.
Privacy is the baseline at Friendly, not an upsell. Here's exactly how that works, in plain language.
End-to-end encrypted by defaultEnd-to-end encrypted
Direct messages are end-to-end encrypted by default. Only you and the people in the chat hold the keys — we can't read them, and neither can anyone else.
On this device, by default
Your content lives on your device first. What syncs is encrypted in transit and at rest, and you control what leaves the device.
Subpoena-resistant by design
We minimize what we collect, so there's little to hand over. We can't disclose message contents we were never able to read.
What we store
Message contentsEnd-to-end encrypted — we can't read them
Your contactsOn device; not uploaded in plaintext
Payment & escrow recordsStored to run the marketplace
Sold to advertisersNever
Used to train AINever — off, permanently
Our practices
- • Encryption in transit (TLS) and at rest for everything we store.
- • Certificate pinning in production — connections fail closed on a fingerprint mismatch.
- • Sensitive identifiers are encrypted with AES-256-GCM before they ever touch a database.
- • Granular, revocable permissions — location and presence are opt-in and never run in the background.
- • Report & block with a real person reviewing within 24 hours.
Read the details
The Privacy Policy spells out every data flow in full.