Privacy Policy
Last updated: February 23, 2026
Relay.cafe is operated from the Republic of Bulgaria, European Union. The data controller is the operator of Relay.cafe. We respect your privacy.
1. Data We Process
Relay may process:
- Apple Sign-In identifier (hashed).
- Session tokens.
- Technical data such as IP address for security and rate limiting.
- Encrypted message data (automatically deleted after 24 hours).
We do not store message history beyond 24 hours.
2. Message Deletion
Messages are automatically deleted from our systems after 24 hours.
Once deleted, they cannot be recovered. We do not maintain archives of deleted messages.
3. Legal Basis (GDPR)
We process data on the basis of:
- Contractual necessity (to provide the service).
- Legitimate interest (security and abuse prevention).
4. Data Retention
- Message content: maximum 24 hours.
- Session data: until expiration or account deletion.
- Security logs: retained only as necessary for abuse prevention and legal compliance.
5. Your Rights (EU Users)
Under GDPR, you have the right to:
- Access your data.
- Request deletion.
- Request correction.
- Restrict processing.
- Lodge a complaint with a supervisory authority.
You may delete your account at any time within the app.
6. International Data Processing
Infrastructure providers may process data in various jurisdictions. We rely on appropriate safeguards under applicable data protection law.