Your Privacy Matters.

1. Data Collection

Blime is built on the principle of simplicity and privacy. We only collect the bare minimum data required to provide our service: your email address and a chosen username. The messages you send are encrypted using server-side AES-256 encryption and stored in encrypted form in our database. We do not track your location, your browsing history, or sell your data to third parties.

2. Real-time Communication

Our real-time features (typing indicators, presence, and message delivery) are designed to enhance your human connection. These signals are transient and are used only to power the live experience of the application. All real-time message delivery maintains server-side encryption, ensuring that even real-time communications are secure.

3. End-to-End Encryption

We implement robust server-side encryption for all messages using AES-256-GCM encryption with PBKDF2 key derivation. When you send a message, it is transmitted to our servers where it is encrypted using a key derived from your user ID. Messages are stored in their encrypted form in our database and can only be decrypted by authorized users.

Encryption keys are derived server-side using industry-standard PBKDF2 key derivation with your user ID and a secure salt. These keys are never stored in plaintext and are only used for encryption and decryption operations within our secure server environment.

Even our development team cannot access the content of your encrypted messages. All messages are protected with military-grade encryption algorithms that meet industry standards for security.

4. Post Creation and Management

Our platform allows users to create and share educational content through posts. When you create a post, we store the title, instructions, message, and category along with your user ID. Posts you create are visible to other users according to our platform's privacy settings. You retain ownership of any intellectual property rights you hold in your posts.

When you save posts created by other users, we record this action and link it to your account. This allows you to access your saved content across devices and helps us provide personalized recommendations based on your interests.

5. Notifications and User Interactions

Our platform may send notifications to users regarding posts, messages, and other activities. By using our service, you consent to receive these notifications. We send notifications when someone interacts with your posts, saves your content, or responds to your activity. You can adjust your notification preferences in your account settings.

We collect and use information about your interactions with posts and notifications to improve our platform and provide personalized recommendations. This data is handled securely and is never sold to third parties.

6. Video Meetings and Jitsi Integration

Our platform integrates with Jitsi to provide secure video conferencing capabilities. When you create or join a session, we may generate temporary Jitsi meeting links for your meetings.

Meeting invitations sent through our platform contain meeting links and optional notes. These invitations are delivered via our notification system and are only accessible to intended recipients.

We do not store, record, or access the content of your Jitsi sessions. All video, audio, and chat data remains within Jitsi's secure infrastructure and is governed by Jitsi's privacy policies.

7. Aura System

Our Aura features allow you to share your vibe through temporary posts. Your expression earns you Aura Points, which reflect your presence in the community.

8. Data Minimization and Encryption

We practice data minimization and only collect information that is essential for the functioning of our service. We do not track your activity beyond what is necessary for providing our messaging features. All content shared through our platform, including Aura posts, is protected with the same end-to-end encryption as our messaging system.

9. Profile Information

When you create your profile, you may choose to provide additional information such as your name, age, skills you're proficient in, and skills you're eager to develop. This information is stored securely and is used to personalize your experience and connect you with others who share similar interests. Profile photos can be uploaded or linked via URL, and these are stored securely with appropriate access controls.

10. Skills and Interests Data

Your skills and interests data is collected to enhance community features and help connect you with like-minded individuals. This information is stored encrypted and is only used to facilitate meaningful connections within the Blime community. You have full control over what skills and interests you choose to share publicly.

11. Encryption Key Management

Your encryption keys are derived server-side using your user ID and a secure salt. Keys are never stored in plaintext and are only used for encrypting and decrypting your messages within our secure server environment. We do not have access to decrypt your messages without proper authentication.

12. Google Authentication

We offer Google authentication as a convenient way to sign up and log in to Blime. When you authenticate using Google, we only request access to your basic profile information including your name and email address. We do not request access to your Google contacts, calendar, or other sensitive data.

Your Google credentials are used solely for authentication purposes and are not stored by our service. We rely on Google's secure OAuth 2.0 protocol to verify your identity without accessing your Google password.

13. Favicon and Branding

Our favicon and branding elements are used solely for identification purposes and do not collect any personal data. These assets are served directly from our servers without third-party tracking.