Privacy Policy — ma.sl
ma.sl (the "App") is an Android application published by lch-agency ("we"). This policy describes the data processed when you use ma.sl and your related rights.
1. Intended audience
ma.sl is strictly reserved for adults (18 years and older). The app is not intended for children or minors.
2. Privacy by design
ma.sl uses end-to-end encryption (Signal Protocol, libsignal) for every piece of content exchanged between two paired devices.
- Content (contracts, ideas, actions, punishments, rewards, media) is never readable by our servers or any third party.
- Local databases are encrypted on the device (SQLCipher, AES-256, Android Keystore).
- App unlock is protected by your biometrics.
- The app embeds no analytics, no advertising, and no crash reporting.
3. Data processed
3.1 Data processed on our servers
| Data | Purpose | Legal basis | Retention |
|---|---|---|---|
| Pseudonymous pairing identifier | Route encrypted messages between two devices | Service execution | Lifetime of the pair, then up to 30 days |
| Push notification token (FCM) | Wake the recipient device | Service execution | While registered, otherwise up to 30 days |
| Encrypted payloads in transit | Relay encrypted content we cannot decrypt | Service execution | Strictly the time needed for delivery, max 30 days |
3.2 Data processed locally only
- Contracts, ideas, actions, punishments, rewards
- Media proofs (video, audio, photo)
- Session metadata
- Private cryptographic keys
3.3 Data we do not collect
- Name, email, phone number, location
- Contacts, external files or photos
- Android Advertising ID
- Usage statistics
- Crash reports
4. Android permissions
| Permission | Purpose |
|---|---|
CAMERA | Capturing video proofs and scanning the pairing QR code |
RECORD_AUDIO | Audio capture for video proofs |
INTERNET | Encrypted communication with the relay server |
POST_NOTIFICATIONS | Pairing, contract, and proof notifications |
USE_BIOMETRIC | Biometric app unlock |
5. Sub-processors and third parties
- Google Firebase Cloud Messaging (Google Ireland Ltd, EU): push notification delivery. Only opaque tokens and encrypted payloads are processed.
- lch-agency infrastructure: relay server hosted with a cloud provider in the European Union. Temporary storage of encrypted content.
No personal data leaves the EU in cleartext.
6. Your rights (GDPR)
Under EU Regulation 2016/679, you have the rights to:
- access, rectify, and erase your data
- restrict and object to processing
- data portability
To exercise them, contact contact@lch-agency.com. You may also file a complaint with your local data protection authority (CNIL in France, cnil.fr).
To delete your data:
- Uninstalling the app deletes all encrypted local data.
- A request to
contact@lch-agency.comtriggers deletion of pseudonymous identifiers and FCM tokens server-side within 30 days.
7. Security
- End-to-end encryption (libsignal, double ratchet)
- Local encryption (SQLCipher, Android Keystore, AES-256)
- TLS for all network communications
- No stored passwords (biometric unlock only)
8. Changes
We may amend this policy. Material changes will be notified inside the app. The "last updated" date at the top of this page reflects the most recent revision.
9. Contact
lch-agency
contact@lch-agency.com