Privacy, Encryption and Moderation Policy


	  At Epiwall (the "Service"), we strongly believe that privacy, encryption and moderation are tightly interrelated. As such, we present here our Privacy, Encryption and Moderation Policy (the "Policy"):
	  

	    Privacy: The privacy of users is the Service's flagship feature. As such, our policy is the following:
		  
			The identity of our users is never verified.
			No personal-identifying information (PII) is stored in the user's account.
			No passwords are stored into the Service; there are no means for users to recover their password using the Service.
			Users do not have to provide an email or phone number to be registered in our service. The service and its users rely solely on the Service's messaging mechanism to perform all communications.
			Although users can be identified by profile photos, such photos are not verified and, as such, cannot be relied upon to identify the user.
			Data posted by users of the Service is end-to-end encrypted (see our "Encryption" section below).
		  
		
	    Encryption: Data posted by users in the Service is end-to-end encrypted, as follows:
		  
			The Service and the services it relies upon are encrypted with both symmetric and assymetric keys using the SSL and TLS protocols.
			Data is encrypted by the Service's application at the user's computing device and transmitted and stored into the Service after being encrypted; similarly, encrypted data is transmitted to the user's computing device, where it is decrypted. No text content is decrypted at the Service's computing devices. This is called end-to-end encryption.
			Transmission of keys between users for the purpose of sharing is done using assymetric encryption. Keys are encrypted by the sender using the receiver's public key. Keys are decrypted using the receiver's private key (only known to the receiver).
			Images and videos are stored encrypted in the Service; they are decrypted by the service "on-the-fly" (i.e. in a main memory buffer without storing any decrypted data) using an anonymous buffer identifier and a key provided by the user through the Service's application.
			Public keys are not encrypted. Private keys are encrypted with a 256-bit password hash using AES.
			The content of private spaces is encrypted and its keys are only known to the members of each space; such keys being transmitted using assymetric encryption, as outline above.
			Although the content of public spaces is encrypted, the space's key is publicly accessible, and thus its content.
			The following items are not encrypted:
				
					The user's nickname and unique system identifier.
					The fact that the user is logged and using the Service.
					Each one the user's space names, as well as the privacy level, service level and tags of each space.
					The fact that a user is an owner or member of a space.
					The fact that two users have communicated via chat; the chat contents are encrypted.
					The fact that a user has reacted to a post or a comment, and the type of reaction; the contents to which the user reacted are encrypted.
					The timestamps (date/time) of all items.
				
			
		  
		
	    Moderation: Since private spaces are encrypted, and as such its contents are not publicly accessible, there is no way for the Service to moderate its contents. However, public spaces, being publicly accessible, are subject to moderation to protect the reputation of individuals, the stability of governments and the safety of societies and individuals. As such, the Service reserves the right to:
		  
			Moderate, flag or remove any content published in public spaces.
			Block, cancel, delete or remove any user posting any content in public spaces.
			Decide, at its sole discretion, whether any public content published in the Service shall be subject to this Policy.