E2EE & Technical Disclaimer

This End-to-End Encryption (E2EE) and Privacy Technical Disclaimer serves to outline the capabilities and inherent limitations of our security architecture.

1. Our Cryptographic Promise

Nixvoid promises a "Zero-Knowledge" environment. Through our deployment of Perfect Forward Secrecy (PFS), rotating ECDH (Elliptic-Curve Diffie-Hellman) key agreements, and AES-256-GCM encryption, we guarantee that:

No developer, administrator, or infrastructure provider can mathematically read your messages.
In the event of a theoretical server breach, your past messages are safe, as they do not exist on our servers (due to our strict ephemeral deletion timers), nor do the cryptographic keys to unlock them.

2. The "Analog Hole" & Recipient Trust Disclaimer

While our technical stack shields your data during transit (via DataChannels or Firebase Fallback) and ensures auto-deletion from the application's DOM, you must inherently trust the person you are communicating with.

Warning: Nixvoid cannot prevent the recipient from physically capturing the encrypted screen. We bear no liability if your counterpart utilizes third-party screen recording software, takes a physical photograph of the screen using a secondary device, or copies the data before the 10-second self-destruct timer executes.

3. Client-Side Security

Our encryption is only as secure as the device you are operating. Nixvoid relies heavily on the native browser Web Crypto API. If your device is infected with malware, keyloggers, or rogue browser extensions, the integrity of the E2EE tunnel may be compromised locally.