Defending Our Privacy

Privacy is something that we believe everyone has the fundamental human right to. If an individual wishes to keep both their business and personal lives private, then they should be able to do so. SecureCrypt was founded for this reason and it is why we created SecureCrypt. From business avoiding the looming threat of cooperate espionage, journalists protecting their confidential sources, to lawyers conversing with their clients, each need privacy to do their jobs. Even in your day to day conversations with friends and family. Would you be comfortable knowing someone is reading your every message?

None of these are wild theories or worse case scenarios, each are examples in day to day life. Without each of these protected, the press is muted and cannot be an effective check on power, business will be stifled and under threat and lawyers will be unable to effectively help their clients. As technology advances, we have all begun to accept more and more encroachments into our privacy. But we do not have to stand and take this any longer. As technology can be used to remove our privacy, it can also be used to help protect us.

Turning towards better privacy

Almost all of us use some form of social media, each day of our lives. These days, it is rare to run into someone who does not have some form of social media. But with every status update, photo and post, you inadvertently create a very accurate picture of yourself, one which allows algorithms to guess your political opinions, interests and even something as personal as your sexual orientation. And all of this can be done without you ever actually saying any of this. The Electronic Frontier Foundation filed an amicus brief for Doc Society v. Pompeo, which involved the U.S. government being blocked from requiring any visa applicants to the country disclosing their social media profiles:

Social media profiles paint alarmingly detailed pictures of their users’ personal lives. By monitoring applicants’ social media profiles, the government can obtain information that it otherwise would not have access to through the visa application process. For example, visa applicants are not required to disclose their political views. However, applicants might choose to post their beliefs on their social media profiles. Those seeking to conceal such information might still be exposed by comments and tags made by other users. And due to the complex interactions of social media networks, studies have shown that personal information about users such as sexual orientation can reliably be inferred even when the user doesn’t expressly share that information. Although consular officers might be instructed to ignore this information, it is not unreasonable to fear that it might influence their decisions anyway.

The more that we do not actively protect our privacy, the more others take that as a sign that they can spy in on our privacy, with little to no repercussions. And this just applies to the “good guys”. From phishers, to scammers, hackers and state-sponsored espionage, they are all willing to go to any level to compromise your privacy. We can turn to technology to help us solve this problem, but technology cannot fully do this alone. To take control of our privacy, we need to use technology ourselves to be proactive.

One of the ways you can be proactive is by you using a secure messaging solution and SecureCrypt is one that will make sure your privacy is secure. We do not just rely on strong encryptions and hardware, but on the philosophical approach of the company.

We never want or need to know what you are doing or who you are. It is not our business to know. We do this so that you can always have your privacy, and that you always know that you are secure.

How SecureCrypt protects your privacy

When SecureCrypt was designed, the protection of the user’s privacy was always the first thought. Here are some of the features that will protect you privacy with SecureCrypt:

⦁ Every ID is made of a 6 character username, of both letters and numbers, which randomly assigned

⦁ Your ECC ID is not connected to any information that may be personally identifiable to you, such as your phone number or email. Not even your name is attached.

⦁ There is no function to browse through ECC ID’s, no list containing each one. So your ID is not discoverable to anyone.

⦁ Anyone who wishes to communicate must be approved by you before you can start talking. And if you wish to message someone who you do not have in your contact list, you have to ask before you can start chatting with them.

⦁ Sharing ECC ID’s is normally done through talking directly with people, face to face. You are able to have contacts forwarded to you, but you must still request to communicate with them.

⦁ All message metadata is encrypted to make sure any part of your information cannot be seen and taken by third parties.

Every part of the SecureCrypt system is made so that we never collect any of your metadata or personally identifiable information, let alone store it. We believe that both your business and personal life should be private if you want it to be. We believe it is integral to protect your privacy, as it is a major part of protecting your business, identity and your security.

Find out how we help protect your contact list and your privacy within SecureCrypt

However, even the best privacy protections don’t do much if they are not supported by just as strong security measures.

Keeping your information secure

When we built SecureCrypt we always assume that every part has been compromised and from this build protections in multiple layers from the device upwards. This is our “Zero-Trust” approach. From this starting point, we know that every single part is secure, from the OS to the app. With every layer of security we place, it makes sure that no matter what the privacy protections cannot be compromised.

When it comes to the devices we use, we only choose from BlackBerry, Samsung, and other compatible models. With each device containing tamper-resistance, picking only those that pass stringent and rigorous security tests. Any feature that poses a potential risk to privacy or security, such as biometrics, Bluetooth and screenshots, are disabled. Via highly secure SIM-based APN settings, each device connects to our secure, private mobile data network, which also uses multiple VPNs on device, and on the SIM. Regardless of how the device in question connects to the internet, a 2048 encryption key is used to encrypt all communications, as well as passing through anonymizing gateways, as to give full network protection. To help stop against malware or phishing attacks, devices are restricted from having free internet access. Any unknown device will be unable to connect to our servers, keeping your device protected, as well as the network.

When SecureCrypt is installed, it is placed into a secure container within the device. This is so the app is always protected in the unlikely case malware would be to compromise the phone.

Anyone trying to use brute force attacks will fail and any attempt to use an insecure connection to login will not succeed, both thanks to the protections put in place. When logged in, every message, file or piece of information is securely encrypted with a 521 bit ECC (Elliptic Curve Cryptography) key which utilizes a proprietary encryption algorithm, which has been audited and proven safe, and free of any “backdoors”.

And to make sure that your information is truly safe, we make sure to encrypt metadata too, something other secure messaging apps don’t do, with AES 256. Despite the network connection already being encrypted, we want to make sure no matter what, your information is secure and private.

Included in the app is several failsafe’s, put in place to make sure that your information and messages remain private. An ECC ID can be associated with only one device at any time, which makes sure that no one can ever attempt to impersonate you or any other user. If someone attempts to input an incorrect password in 5 times, then the protections for brute force attacks will engage, deleting all chats, data and information from the device, to ensure that if anyone tries to break in, your data will not be in their hands. SecureCrypt allows for you to be able to fully delete the app with a duress password, a feature designed for emergencies.

SecureCrypt is not available with every single app store as we would have no idea if it was then being installed onto secure devices. If it is installed onto a compromised device, any amount of security apps will not be able to keep that phone secure, as everything on it is compromised by malware, including the app.

Security and privacy are central to our philosophy

We always believe in making sure privacy is protected, something we have shown in our stance against putting backdoors into encryption solutions or apps. For us, protecting privacy and protecting encryption go hand-in-hand. But between malicious apps, hacks and even social media, our privacy is slowly being eroded away. SecureCrypt stands against this trend and for creating platforms and apps that keeps us secure and more protected, not less. We have always made our position on "free" apps known; these apps collect all your personal data, and the companies behind these apps sell your personal data to data brokers many times over.

We are expanding aggressively globally, and we hope you will decide to take your privacy back! If you don’t trust Big Tech with your secrets, get in touch with us today to find out how we can help.

Lawyers, journalists, activists, whistleblowers, celebrities, athletes, those employed in sensitive areas, enterprise looking to protect IP, and privacy conscious individuals are all welcome! This sophisticated infrastructure was built solely to protect you and your most sensitive communications. Our device, firmware, hardware, software, network based, and SIM based protections are not available anywhere, including from any ISPs like Rogers, who are intent on collecting your data instead of securing it. You need a device built for security from the ground up, like SecureCrypt.