Unspoken Letters
← Back to feed

Privacy (Beta Draft)

Last updated: 2026-02-16

We aim to minimize personal data. Phone numbers are never stored in plaintext; we store only a hash of the normalized number.

Data we store

  • Account: guest account (cookie-based), optional phone hash, created time
  • Verification: OTP challenges (hashed), expiry and attempts
  • Content: letter title/body, recipient phone hash, timestamps, seen status
  • Community: votes and reports
  • Session: a signed cookie token for login

Purpose

  • Authentication and abuse prevention
  • Recipient matching (via recipient phone hash)
  • Community operations (voting, reporting, moderation)
  • Service reliability (error logs, rate limiting)

Retention and deletion

Retention rules may change during beta. Operational backups may be created for reliability. For deletion requests or urgent privacy issues, contact us.

Recipient alert policy

We do not send external alerts to recipient phone numbers entered in letters. OTP SMS is sent only when a user directly requests verification.

Contact

Email soobong1217@gmail.com for privacy-related questions.

Note: this document is a beta draft and may change.