Privacy

Your conversations. Your control.

Minyma is designed so message and attachment contents are encrypted on sender devices and decrypted on recipient devices. The relay handles delivery, queueing, push, and attachment transfer while Minyma keeps the privacy boundary clear and practical.

Get Minyma Read Privacy Policy

At a glance

Minyma's privacy position

Message and attachment content are designed to stay end-to-end encrypted
Private keys stay on user devices rather than on the relay
Private call signaling uses sealed-sender delivery across current direct and group call flows
The relay uses limited operational metadata for delivery and reliability
Uploaded ciphertext attachments are deleted from the server under normal retention and account-deletion flows
Minyma protects message content end to end and continues reducing relay-visible metadata
Minyma can detect screenshots after iOS reports them and can hide sensitive content during active screen recording or mirroring
Minyma IDs avoid a public phone-number directory as the core account model
Account deletion removes relay-held account data, not other users' local copies
Local reset and duress features are strongest on the current device
Trust review and linked-device controls stay visible to users

Protected

What Minyma is built to protect

Message text
Attachment contents
Attachment keys shared inside encrypted messages
Receipts, edits, and deletes carried in encrypted flows

Metadata

What supports delivery

Which user or device is sending
Which user or device is receiving
Timing and frequency of messages
Encrypted attachment size and limited transfer metadata, such as upload/download timing and delivery state

Deletion

What Delete Account does

Uploaded ciphertext attachments are deleted from the server under Minyma's normal retention and account-deletion flows. Delete Account is intended to remove relay-held devices, queued delivery data, profile information, push tokens, and uploaded ciphertext attachments.

It wipes the current device back to onboarding
It does not erase content already downloaded to other devices

Local

Reset and duress behavior

Local reset wipes the current device. Duress mode can wipe locally and, when enabled, first tries to delete the relay account before that wipe.

These tools are strongest on the current device
They do not remove content from other users' devices

Capture safety

Useful signals, even after the moment passes

On iPhone and iPad, Minyma can detect screenshots after iOS reports them and can hide sensitive content during active screen recording or mirroring.

Screenshot detection helps user awareness when sensitive content may have just been copied
Local breadcrumbs can support audit visibility and follow-up safety flows
Active recording or mirroring can trigger a privacy veil while capture is in progress

Boundary

Capture awareness on Apple devices

Minyma pairs screenshot awareness with live privacy veils during screen recording or mirroring so sensitive content stays easier to manage on Apple devices.

Screenshot awareness helps users react quickly after iOS reports a capture
Detection supports local reactions and audit visibility after capture
Active-capture protection is strongest during recording or mirroring sessions