Privacy Policy
Effective: June 4, 2026
Orbital is a private social network built by Pure Karma Labs LLC. We designed Orbital so that we cannot read your messages, files, or content. This policy explains what we can and cannot access, what data we collect to operate the service, and how we handle it.
1. What Orbital Encrypts
The following data is end-to-end encrypted (E2EE) using the Signal Protocol. The Orbital client encrypts this content on your device before transmission. Our servers store and relay ciphertext that we do not have the keys to decrypt.
- Messages — thread titles, thread bodies, and replies (AES-256-GCM with per-group keys)
- Direct messages — same encryption as group messages
- Files and media — photos, videos, and attachments (AES-256-CBC with HMAC-SHA256)
- File metadata — filenames, content types, and dimensions
- Orbit names — the names of your groups
- Group encryption keys — individually wrapped for each member using ECIES
- Profile photos — encrypted with a per-user profile key
We cannot read, search, filter, or moderate encrypted content. If you lose access to your encryption keys (for example, by losing your device), we cannot recover your content.
2. What We Store to Operate the Service
To deliver messages, manage accounts, and keep the service running, we store the following data in readable form on our servers:
| Data | Purpose |
|---|---|
| Email address | Account creation, password reset, invite matching |
| Username | Account identity within orbits |
| Display name | Shown to other orbit members |
| Public encryption keys | Required for E2EE key exchange (public by design) |
| Orbit memberships | Message routing (who is in which orbit) |
| Timestamps | Message ordering and delivery |
| Password | Stored as a bcrypt hash (we cannot read your password) |
3. Third-Party Services
We use the following third-party services to operate Orbital. Unlike most messaging apps, we name each processor and disclose what data they receive.
Firebase Cloud Messaging (Google)
Used to deliver push notifications on Android. Your device's FCM push token is sent to Google's infrastructure to route notifications. Push payloads contain no message content — only routing identifiers (e.g., which orbit received a new thread). Google may associate the push token with your device.
Apple Push Notification Service (Apple)
Used to deliver push notifications on iOS. Your device's APNs token is sent to Apple's infrastructure. Like FCM, push payloads contain no message content.
Sentry (Functional Software Inc.)
Used for crash reporting and error tracking. When the app crashes, Sentry receives a crash report that may include: an anonymous user identifier, device type and OS version, stack trace, and app version. Sentry does not receive message content, encryption keys, or your email/username.
Brevo (Sendinblue)
Used to send transactional emails (password reset, account verification). Brevo receives your email address for the purpose of delivering these emails.
4. Data Retention and Deletion
You can delete your account at any time from the Settings screen in the Orbital app. Account deletion:
- Permanently removes your account, profile, and server-stored data
- Removes your membership from all orbits
- Deletes your encryption keys from our servers
- Clears all local data from your device
Copies of encrypted messages that were delivered to other members' devices are not affected by your account deletion — we do not have the ability to delete data from other users' devices.
If you cannot access the app, you may request account deletion at orbitl.org/account-deletion or by emailing [email protected].
5. Children's Privacy
Orbital is not designed for or directed at children under 13. We do not knowingly collect personal information from children under 13. If you believe a child under 13 has created an account, please contact us at [email protected] and we will delete the account.
6. Encryption and Export Compliance
Orbital uses strong, standard encryption algorithms: AES-256, ECDH/X25519, Ed25519, HMAC-SHA256, and HKDF. These are published, peer-reviewed algorithms — not proprietary encryption. Orbital is classified under ECCN 5D002 and is eligible for the mass market encryption exemption under U.S. Export Administration Regulations (EAR 740.17(b)(1)).
7. Your Rights
You have the right to:
- Access your account data (available in the app's Settings screen)
- Delete your account and all associated server-stored data
- Export your data (contact us at [email protected])
Because message content is end-to-end encrypted, we cannot provide copies of your messages — they exist only on participants' devices.
8. Security
All communication with our servers uses TLS (HTTPS and WSS). End-to-end encrypted content is additionally protected by the encryption described in Section 1. We do not sell, rent, or share your personal data with third parties for marketing purposes.
9. Changes to This Policy
We may update this policy from time to time. If we make material changes, we will notify you through the app or by email. The effective date at the top of this page indicates the most recent revision.
10. Contact
If you have questions about this privacy policy or your data, contact us at:
Pure Karma Labs LLC
Email: [email protected]
Website: orbitl.org