How VEIL Treats Your Privacy

VEIL is designed as a local, client-side privacy layer for text-based communication.

The goal is to provide plausible deniability and conversational camouflage, not another centralised messaging platform.

Encryption and decryption are performed locally on your device using AES-256-GCM.

Cover messages are generated on your device to blend encrypted content into normal-looking conversation.

Steganography uses zero‑width Unicode characters so that encrypted payloads remain visually invisible.

In the MVP and Early Access phases, the plugin can operate entirely offline once installed.

VEIL does not send your messages, keys, or decrypted content to our servers.

VEIL does not store conversation history or message logs on our infrastructure.

VEIL does not claim to be "unbreakable" or "100% secure" and should not be used as a single point of failure for high‑risk operations.

In the SaaS version, servers are used only for licence management: issuing, validating, activating, and revoking licence tokens.

Optional, anonymised usage statistics may be collected to improve the product (for example: active licence count, aggregate feature usage).

No message content, keys, or steganographic payloads are ever transmitted to, or stored on, VEIL servers.

Some configuration values (such as language preferences or UI settings) may be stored locally on your device or browser.

You remain responsible for the physical and operating‑system security of your device (malware, keyloggers, compromised accounts, etc.).

VEIL is designed to run as a local layer on top of third‑party platforms (for example chat applications).

Those platforms have their own terms of service and privacy policies, which remain fully applicable.

It is your responsibility to use VEIL in a way that complies with the rules and laws that apply to you.

No security tool is perfect. VEIL reduces observable signals but cannot remove all risk.

You should not rely on VEIL alone for life‑critical or high‑stakes scenarios.

Marketing claims avoid absolute guarantees such as "undetectable" or "untraceable" by design.

This page may evolve as VEIL moves from MVP to Early Access and full SaaS.

Significant changes to data handling or server‑side features will be documented here in clear language.