Privacy Policy
Effective Date: May 21, 2026
Last Updated: May 21, 2026
1. Introduction & Zero-Knowledge Commitment
Welcome to Sendme.alt. Your privacy is not just a feature—it is the foundational premise of our architecture. We operate on a strict Zero-Knowledge, peer-to-peer (P2P) framework. This Privacy Policy details exactly how your data is treated when utilizing our service.
2. Data Collection (What We Don't Collect)
By design, our infrastructure is incapable of accessing your data. We inherently do not collect, process, or store:
Personal Data
No names, email addresses, phone numbers, or account profiles are required or collected.
File Contents
We have absolutely no visibility into the files you transfer. All data remains strictly on your device until transmitted directly to the recipient.
File Metadata
We do not log filenames, file sizes, or file types.
Transfer Histories
No persistent logs of who you connect with or what you send are maintained.
3. How Your Data Moves (WebRTC)
Sendme.alt uses WebRTC to establish a direct connection between the sender and receiver.
End-to-End Encryption (E2EE)
All file transfers are secured via WebRTC's mandatory DTLS/SRTP encryption. We do not hold the cryptographic keys.
No Server Transit
Your files never pass through our backend databases, servers, or cloud storage. They go directly from device A to device B.
4. Ephemeral Signaling Data
To broker the peer-to-peer connection, our backend functions solely as a temporary signaling server.
During the initial connection phase, we temporarily process routing metadata (such as IP addresses and WebRTC session descriptions). This data is highly ephemeral. It exists only in volatile memory for the brief seconds required to establish the connection and is atomically destroyed the moment the transfer begins, fails, or is cancelled.
5. Infrastructure & Security Logging
To protect our signaling servers against abuse (e.g., DDoS attacks) and ensure service availability, our hosting providers may automatically collect standard web server logs.
This may include anonymized IP addresses, rate-limiting counters, and HTTP request headers. This data is strictly used for security, diagnostic, and performance purposes, is isolated from the file transfer process, and is routinely purged.
6. Tracking & Third Parties
We do not use advertising trackers, marketing cookies, or invasive analytics. We do not sell, rent, or share any of your information with third-party marketers or data brokers under any circumstances.
7. Policy Modifications
As our platform evolves, we may update this Privacy Policy. We reserve the right to modify these practices to comply with legal requirements or technical advancements. Continued use of the platform following any modifications constitutes acceptance of the updated policy.