Privacy Policy

Last Updated: January 2026

Eclipse Veil ("Eclipse Veil," "we," "our," or "us") is a privacy-first secure communication and file protection platform designed to give users maximum control over their data. This Privacy Policy explains what information we collect, how we use it, and the choices you have.

By using Eclipse Veil, you agree to this Privacy Policy.

1. Information We Collect

1.1 Information You Provide

• Account identifiers (email or username/handle)
• Encrypted messages, files, or media (encrypted before storage)
• Optional profile settings
• Subscription and billing information (handled by third-party processors)

1.2 Information We Do NOT Access

2. Encryption & Zero-Knowledge Design

Eclipse Veil is built using a zero-knowledge encryption architecture:

• Content is encrypted client-side before transmission
• Encryption keys are generated and controlled by the user
• Servers store only encrypted data
• We cannot decrypt user data, even upon request

3. Metadata & Logs

We minimize metadata collection to the greatest extent technically possible.

We may temporarily process:

• IP address (for abuse prevention and security)
• Device type / OS
• Timestamps of activity
• Error logs

We do NOT:

• Track browsing behavior
• Sell user data
• Use advertising trackers
• Build behavioral profiles

4. Data Retention

• Encrypted data is retained only while your account is active
• Deleted content is permanently removed
• We cannot recover deleted or lost encrypted data
• Backups are encrypted and rotated regularly

5. Legal Requests & Law Enforcement

Because we do not have access to decrypted content:

• We cannot provide readable user data
• Requests may only receive limited account metadata if legally required

All requests are reviewed for legal validity before any response.

6. Payments

Payments are processed by trusted third-party providers (Apple, Google, Stripe). We do not store credit card information directly. Payment processors may collect their own data as described in their respective privacy policies.

7. Your Rights

You may:

• Access your account data
• Request deletion of your account
• Control your encryption keys
• Opt out of non-essential communications
• Export your data (in encrypted form)

We comply with applicable privacy laws including GDPR and CCPA where applicable.

8. Children's Privacy

Eclipse Veil is not intended for users under 18 years of age. We do not knowingly collect data from minors. If we learn that we have collected personal information from a child under 18, we will take steps to delete that information.

9. International Data Transfers

Your encrypted data may be processed on servers located in various jurisdictions. Due to our zero-knowledge architecture, the actual content remains inaccessible regardless of server location. Metadata processing complies with applicable data transfer regulations.

10. Security

We use industry-standard security practices, including:

• Strong encryption algorithms (AES-256-GCM, ECDH P-256)
• Secure transport (TLS 1.3)
• Hardened infrastructure
• Continuous monitoring
• Regular security assessments

11. Security Breach Notification

In the unlikely event of a security breach affecting your data:

• We will notify affected users within 72 hours of discovery
• We will provide details about the nature of the breach
• We will explain what steps we are taking to address the issue
• Due to our encryption, actual message/file contents remain protected even in a breach scenario

12. Changes to This Policy

We may update this policy periodically. Significant changes will be communicated via the app or email. Continued use of Eclipse Veil after changes constitutes acceptance of the updated policy.

13. Contact