Zero-Knowledge Architecture: NoTrace is built on the premise that the server should know nothing. We cannot read your messages, nor do we want to.
1. End-to-End Encryption (E2EE): All text and files are encrypted in your browser using RSA-OAEP 2048-bit keys. The private key never leaves your device.
2. No IP Logging: The server strictly suppresses all logging. We do not track, store, or log your IP address.
3. Ephemeral Storage: If your friend is offline, the server holds the encrypted payload temporarily. The exact moment your friend connects and fetches the message, it is permanently purged from the server database.
4. No Meta-Data Retention: We do not log timestamps, contact lists, or "who talked to whom" after a message is delivered. Your contacts and history live exclusively in your browser's local storage.
5. Total Anonymity: We do not ask for emails, phone numbers, or passwords. Your identity is a pseudonymous ID tied to a cryptographic hash.