Privacy Policy

1. Overview

offGrd ("we", "our", or "the app") is a peer-to-peer encrypted mesh messaging application developed by Abhishek Kale. This Privacy Policy describes what information offGrd handles, how it is used, and your rights with respect to that information.

offGrd is designed from the ground up to operate without internet connectivity. Messages travel directly between devices over Apple MultipeerConnectivity (WiFi / Bluetooth). No central server receives, stores, or processes your messages.

2. Information stored on your device

The following data is created and stored locally on your device only. It is never transmitted to our servers.

• Display name — the name you choose during onboarding. Shown to nearby peers.
• Cryptographic key pair — a Curve25519 public/private key pair generated on your device. The private key never leaves your device. The public key is shared with nearby peers to enable end-to-end encryption.
• Peer ID — a random UUID generated on first launch that identifies your device in the mesh. It is not linked to your Apple ID, phone number, or any other identity.
• Message history — stored in an on-device SQLite database. Messages are encrypted in transit using NaCl box encryption (XSalsa20-Poly1305). Plaintext is only ever decrypted on the recipient's device.

3. Information shared with nearby peers

When offGrd is active, the following information is broadcast over the local network to nearby devices also running offGrd:

• Display name — so nearby users can identify you.
• Public key — so nearby users can send you encrypted messages.
• Peer ID — used for message routing within the mesh.

This information is only visible to devices within WiFi / Bluetooth range that are running offGrd. It is not broadcast over the internet.

4. Information we do not collect

• Message content (encrypted end-to-end; we cannot read it)
• Location data
• Contact lists or address book
• Device identifiers (IDFA, IDFV)
• Usage analytics or crash reports (beyond what Apple collects via TestFlight / App Store)
• Photos, microphone, or camera data

5. Encryption

All direct messages are encrypted using NaCl box — Curve25519 key exchange, XSalsa20 stream cipher, and Poly1305 message authentication. A fresh 24-byte random nonce is generated for every message.

Relay nodes in the mesh see only the encrypted ciphertext — they cannot read message content. Broadcast announcements (mesh-wide alerts) are unencrypted by design and should not contain sensitive information.

6. Third-party services

offGrd does not integrate any third-party analytics, advertising, or tracking SDKs.

Apple may collect diagnostic and usage data through standard iOS mechanisms (TestFlight feedback, App Store crash reports). This data is governed by Apple's Privacy Policy.

7. Data retention and deletion

All data is stored locally on your device. You can delete your message history at any time from within the app (Settings → Clear All Data). Uninstalling offGrd removes all locally stored data permanently.

We do not hold any copies of your data on our servers, so there is nothing for us to delete on your behalf.

8. Children's privacy

offGrd is not directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided information through the app, please contact us and we will take appropriate action.

9. Changes to this policy

We may update this Privacy Policy from time to time. When we do, we will update the "Last updated" date at the top of this page. Continued use of the app after changes constitutes acceptance of the updated policy.

10. Contact