2You Inc. ("2You") utilizes state-of-the-art security and end-to-end encryption and other security measures to provide private messaging and Internet calling services to users worldwide ("Services").
Your messages, and all AnonChat/Ghost Mode interactions are always encrypted, ensuring they remain inaccessible to anyone except you and intended recipients.
Account Information: You register a phone number when creating a 2You account. You may optionally add encrypted profile details (e.g., profile name, picture).
Messages & AnonChat/Ghost Mode: 2You cannot decrypt or access content. Undelivered messages are encrypted and queued. AnonChat metadata is purged after logout or closure. Ghost Mode data is stored only in RAM and vanishes after decryption or within 72 hours.
Self-Destruct: Erases all data cryptographically, including backups, within 24 hours. Irreversible.
Contacts: With your consent, your contact data will be uploaded to our servers to help you find friends and invite others, as described in this Privacy Policy.
User Support: Data shared is retained only until your inquiry is resolved.
Managing Your Information: Profile and privacy features can be managed via Settings. AnonChat self-erases automatically.
Third Parties: Providers (e.g., for verification codes) are contractually obligated to protect data. Third-party integrations (e.g., YouTube, Spotify) follow their own privacy policies.
Legal Obligations: Data may be disclosed only if required to:
Note: No data exists to share from AnonChat/Ghost Mode due to zero-retention protocols.
SOC 2 Type II: Annual audits validate security, availability, and confidentiality.
ISO 27001: Certified ISMS governs encryption and access control.
GDPR & CCPA: Data minimization, anonymization by default, and Self-Destruct enforce right-to-be-forgotten.
Account Deletion: You can delete your account at any time in Settings. This will permanently remove your profile, messages, contacts, and backups from our systems within 24 hours.
No Backdoors: Encryption remains uncompromised in all jurisdictions.
2You never profiles users or monetizes data.
AnonChat is architecturally isolated from registered accounts.
Biometric data is stored locally and never transmitted.
Policy updates reflect clarity, accuracy, and evolving standards. Continued use implies acceptance.
For support: support@2you.chat
Report abuse: report@2you.chat
Technical issues: bugs@2you.chat
Privacy requests: privacy@2you.chat
Canada: 303-225 Duncan Mill Road, Toronto ON, M3B 2K3
United States: 140 S Atlantic Ave, Ormond Beach, FL 32176
Session Initiation: No phone/email linkage. Uses session-specific aliases (256-bit tokens).
Metadata Handling: IPs obscured via onion routing. Timestamps rounded. Data shards split across Switzerland and Iceland.
Data Destruction: Shredded securely post-session or upon exit.
Messages fragmented into 1KB encrypted shards.
Stored only in RAM, auto-expire within 72 hours or after decryption.
Decryption via quantum-resistant PQ3 protocol with self-deleting keys.
One-time token triggers global data purge.
Data overwritten with 35-pass Gutmann method.
Keys erased from HSMs. Backups purged using zero-knowledge proofs.
GDPR: DPAs with all vendors. Anonymized logs.
Law Enforcement: Transparency reports show minimal data requests.
Third-Party Audits: Annual pentests by Cure53 & NCC Group; results published at security.2you.chat.
This architecture ensures your identity remains yours—ungated, uncompromised, and unmonetized.