Back to chatFastAnChat

Anonymous real-time chat with end-to-end encryption. No sign-up, no tracking, no data collection. Just private conversations.

EncryptedAES-256-GCM E2EE
AnonymousNo account needed
Video CallsPeer-to-peer WebRTC
Real-timeInstant delivery
Group ChatUp to 6 in calls
Zero KnowledgeWe can't read your messages

Security

End-to-End Encryption

Every message is encrypted in your browser using AES-256-GCM before it leaves your device. The encryption key is derived from the room code — which only participants know. The server stores only ciphertext.

Transport Layer

All connections use TLS 1.3. WebSocket channels are encrypted. Video calls use DTLS-SRTP — the standard encryption for WebRTC media streams.

Server Protection

API endpoints are authenticated with secret keys. Database enforces rate limiting at the query level. Input is sanitized to prevent injection attacks. Content Security Policy headers restrict what the browser can load and execute.

Privacy

What we store

Encrypted message ciphertext, random session IDs, and room metadata. No personal information, no emails, no phone numbers, no IP logging at the application level.

What we don't store

Plaintext messages, encryption keys, video/audio recordings, browsing history, or any personally identifiable information.

Data lifecycle

When the room owner leaves, all messages and room data are permanently deleted. Inactive rooms are automatically cleaned up after 24 hours. Video calls are peer-to-peer with no server recording.

Video Calls

Calls connect participants directly using WebRTC. Audio and video streams flow peer-to-peer — they never pass through our servers. When direct connection isn't possible (strict firewalls), traffic is relayed through encrypted TURN servers but remains end-to-end encrypted by WebRTC's mandatory DTLS-SRTP.

Transparency

  • Anonymity is limited by infrastructure logs — hosting providers may log IP addresses independently of our application.
  • The room code serves as the encryption key. Share it only through secure channels.
  • In peer-to-peer video calls, participants may see each other's IP addresses unless routed through TURN relay.
  • Session identity is stored in your browser. Clearing browser data creates a new identity.

Built by dfchanelxd · diofikriyanto