Privacy Policy

Last updated: January 2026

1. Introduction

Transcend Messenger ("we," "us," or "our"), operated by Recurve Labs, is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our messaging service.

We designed Transcend Messenger with privacy at its core. Your messages are end-to-end encrypted, meaning only you and your intended recipients can read them—we cannot access your message content.

2. Information We Collect

2.1 Information You Provide

  • Account Information: Email address, name, phone number (optional), profile photo (optional), and username
  • Contacts: Contact relationships you create within the app
  • Payment Information: Processed securely by Stripe; we do not store your full payment card details

2.2 Information Collected Automatically

  • Device Information: Device type, operating system, and browser type
  • Usage Data: App feature usage, crash reports, and performance data
  • Push Notification Tokens: To deliver notifications to your devices

2.3 Information We Do NOT Collect

  • Message Content: Your messages are end-to-end encrypted. We cannot read them.
  • Encryption Keys: Your private encryption keys never leave your device
  • Location Data: We do not track your location

3. End-to-End Encryption

Transcend Messenger uses end-to-end encryption (E2EE) for all messages. This means:

  • Messages are encrypted on your device before being sent
  • Only the intended recipient(s) can decrypt and read messages
  • We store encrypted messages on our servers, but cannot decrypt them
  • Your private encryption key is stored only on your device(s)
  • We use AES-256-GCM for message encryption and RSA-2048 for key exchange

4. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve the Service
  • Create and manage your account
  • Process payments and subscriptions
  • Send push notifications for new messages
  • Provide customer support
  • Detect and prevent fraud, abuse, and security issues
  • Comply with legal obligations

5. AI Features and Data Processing

Transcend Messenger offers AI-powered features including translation, chat assistant, and image generation. When you use these features:

  • Content is sent to third-party AI providers (such as Anthropic) for processing
  • AI requests are processed in real-time and not stored by us after processing
  • AI providers may have their own data retention policies for service improvement
  • You can choose not to use AI features if you prefer
  • Translations are cached locally on your device for performance

6. Information Sharing

We do not sell your personal information. We may share information only in these circumstances:

  • Service Providers: With trusted third parties who assist in operating our Service (e.g., Stripe for payments, cloud hosting providers)
  • Legal Requirements: When required by law, court order, or governmental authority
  • Safety: To protect the rights, property, or safety of our users or others
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

7. Data Storage and Security

  • Data is stored on secure servers with encryption at rest
  • We use HTTPS/TLS for all data transmission
  • Access to user data is strictly limited to authorized personnel
  • We regularly review and update our security practices
  • Your encrypted messages are stored until you delete them or your account

8. Data Retention

We retain your information as follows:

  • Account Data: Retained while your account is active
  • Messages: Encrypted messages are stored until deleted by users
  • Deleted Accounts: Data is permanently deleted within 30 days of account deletion
  • Backups: May be retained for up to 90 days for disaster recovery

9. Your Rights and Choices

You have the right to:

  • Access: Request a copy of your personal data
  • Correction: Update or correct your account information
  • Deletion: Delete your account and associated data
  • Export: Download your data in a portable format
  • Opt-out: Disable push notifications or AI features
  • Withdraw Consent: Where processing is based on consent

To exercise these rights, visit your account settings or contact us at support@recurvelabs.ai.

10. International Data Transfers

Our servers are located in the United States. If you access the Service from outside the US, your information may be transferred to, stored, and processed in the US. By using the Service, you consent to this transfer. We ensure appropriate safeguards are in place for international data transfers.

11. Children's Privacy

The Service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal information, we will delete it promptly. If you believe we have collected information from a child under 13, please contact us.

12. Third-Party Services

We use the following third-party services:

  • Supabase: Database and authentication
  • Stripe: Payment processing
  • Anthropic (Claude): AI translation, chat, and image generation
  • Firebase/APNs: Push notifications

These services have their own privacy policies governing their use of your data.

13. Cookies and Tracking

Transcend Messenger uses minimal cookies necessary for authentication and session management. We do not use advertising cookies or third-party tracking. Local storage is used to cache encryption keys and app preferences on your device.

14. California Privacy Rights (CCPA)

California residents have additional rights under the CCPA:

  • Right to know what personal information is collected
  • Right to delete personal information
  • Right to opt-out of the sale of personal information (we do not sell your data)
  • Right to non-discrimination for exercising your rights

15. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have rights under the GDPR including:

  • Right of access to your personal data
  • Right to rectification of inaccurate data
  • Right to erasure ("right to be forgotten")
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to lodge a complaint with a supervisory authority

16. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy and updating the "Last updated" date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

17. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us: