Privacy Policy — Ittisal

Effective date: 2026-07-11

1) Who we are

Ittisal is provided by Saifullah Ahad ("we", "us", "our"). Our website/portfolio is: https://saifullah.ai.

Email: www.saifullah.ai@gmail.com

Phone: +8801711134346

Location: Dhaka, Bangladesh

2) What this policy covers

This Privacy Policy explains what information we collect, how we use it, and the choices you have when you use Ittisal (the "App"), a messaging and calling service available through the Android app, the Windows desktop client, and the web client at app.ittisal.org.

3) Information we collect

We collect the following categories of information depending on which features you use:

4) How we use information

5) Third-party services

Ittisal uses the following third-party services:

We do not use advertising SDKs, analytics SDKs, or crash reporting services.

6) Sharing and disclosure

We do not sell your personal information. We do not share your data with third parties for advertising or marketing purposes.

Information is shared only in these cases:

7) Data retention

Messages and media are retained in Firebase as long as the chat exists. Call metadata is retained for call history purposes. You may request deletion of your account and all associated data by contacting us at the email address below.

8) Permissions used

Android: Ittisal may request the following permissions, each used only for its stated purpose:

All Android permissions are optional except Internet. You can deny any permission in Android settings, though the related feature may not work.

Windows and web: Ittisal asks for camera and microphone access only when you use calls or recording, notification access for message/call alerts, and file access only through files you select or download. Internet access is required for messaging, calling, authentication, and synchronization. The Windows shell denies other browser permissions by default.

9) Your choices and controls

10) Security

Where end-to-end encryption is enabled, Ittisal uses AES-256-GCM with per-chat key derivation. The web and Windows clients keep the encryption passphrase locally and can optionally back up key material encrypted with a PIN. Data in transit uses HTTPS, and voice/video calls use WebRTC's encrypted transport. Admin PINs are stored as SHA-256 hashes, not in plain text. We use reasonable technical safeguards to protect your information, but no method of transmission or storage is completely secure.

11) Children's privacy

Ittisal is not directed to children under 13. We do not knowingly collect personal information from children under 13. The Admin Mode feature allows an admin to manage device communications, and requires an admin to set up and control. Ittisal prohibits child sexual abuse and exploitation (CSAE), including child sexual abuse material (CSAM), grooming, sextortion, and sexual solicitation involving minors. Read our separate Child Safety Standards.

12) Changes to this policy

We may update this Privacy Policy from time to time. We will post the updated policy at https://privacy.saifullah.ai/Ittisal and update the effective date above.

13) Contact

If you have questions or requests, contact: Saifullah Ahad
Email: www.saifullah.ai@gmail.com
Phone: +8801711134346
Website: https://saifullah.ai