Built on MLS Protocol

Private Group Messaging,
Built on Standards.

End-to-end encrypted conversations using MLS (RFC 9420). We can't read your messages. When you delete a group, we destroy the keys.

Chat Securely Now
Message Flow

How Messaging Works.

Three steps. Encrypted before it leaves, relayed blindly, decrypted only on arrival.

01

Encrypt on Device

Your message is encrypted with AES-256-GCM using the group's current epoch key. The key never leaves your device.

02

Blind Relay

Our server receives an encrypted blob and forwards it to group members. It can never read, modify, or log the plaintext.

03

Decrypt & Read

Your friend's device retrieves the epoch key from its local store and decrypts. Messages only exist as plaintext on member devices.

Voice Calls

Secure Calling.

One-to-one voice calls over WebRTC. The server relays the handshake — never the audio.

01

Signal Privately

Your device sends an encrypted signaling offer through our server. Caller identity is sealed with AES-256-GCM — only group members can see who's calling.

02

Connect Peer-to-Peer

WebRTC establishes a direct connection between devices using ICE. Once connected, audio flows device-to-device — our server is out of the loop.

03

Talk Encrypted

All audio is encrypted with DTLS-SRTP — built into WebRTC and impossible to disable. The server never touches your voice data.

How We Protect Your Messages.

Built on the Messaging Layer Security protocol—the same standard adopted by major messaging platforms.

End-to-End Encrypted

Messages are encrypted on your device using the MLS protocol. Our servers only see encrypted blobs—we cannot read your content.

Forward Secrecy

Compromise of current keys doesn't expose past messages. Each message epoch uses fresh key material derived via HKDF.

Server-Side Crypto-Erasure

When a group is deleted, we destroy all key material. Stored ciphertext becomes permanently unrecoverable.

Security You Can Verify.

We believe in honest security claims. Here's exactly what we do and don't protect.

What We Promise

Content stays encrypted—we can't read it
Forward secrecy protects past messages
Post-compromise security via key rotation
Crypto-erasure on group deletion

What We Don't Promise

Metadata privacy (we see group membership, timing)
Protection if your device is compromised
Invisibility to network observers

Private Conversations, Honest Security.

Built on audited protocols, not marketing claims. Your messages are encrypted with MLS—the same standard used by major messaging platforms.

Chat Securely NowRead the Whitepaper