🔒 Privacy Policy

Beyarmudu — Peer-to-Peer Voice & Text Chat Application

Last Updated: March 19, 2026

Beyarmudu values user privacy. This policy explains what data is collected, how it is used, and your rights.

Disclaimer: Beyarmudu is a personal and experimental project. It is not a professional or commercial service. Users use the application entirely at their own risk. The Developer cannot be held responsible for data loss, privacy breaches, or issues arising from third-party services.

1. Core Principle

Beyarmudu is built on a peer-to-peer (P2P) architecture. Your messages, voice communications, and files are transmitted directly to other users. Chat messages, voice data, and file contents are not stored on any central server.

2. Data Collected and Stored

Data Type	Collection Method	Storage Location	Purpose
Username	User input at registration	Cloudflare D1 database	Authentication
Hashed password	At registration	Cloudflare D1 database	Account security
Email address	At registration	Cloudflare D1 database	Password reset, account recovery
Avatar selection	User selection	Browser (localStorage) + D1	Profile display
Custom profile photo / banner	User upload (base64)	Browser (localStorage) + D1	Profile customization
Profile info (bio, status, social links, color)	User input	Cloudflare D1 database	Profile display
XP, level, statistics	Automatic calculation	Browser (localStorage) + D1	Gamification system
Invite code	At registration	Cloudflare D1 database	Access control
IP address	WebRTC connection	Not stored*	P2P connection setup
Cloudflare Turnstile data	Automatic (captcha)	Cloudflare servers	Bot protection
Session token (JWT)	Automatic after login	Browser (localStorage)	Session management
Invite Code Request System
Name / Nickname	Form input	Cloudflare KV	Application review
Email address	Form input	Cloudflare KV	Delivery of invite code
Application message (optional)	Form input	Cloudflare KV	Application review
IP address and country	Automatic (Cloudflare headers)	Cloudflare KV	Abuse prevention

* IP addresses are temporarily relayed through PeerJS servers during the WebRTC connection process but are not permanently stored.

3. Data We Do Not Store

Beyarmudu absolutely does not store: chat messages, voice call content, shared files, search history, location data, device fingerprints, or tracking cookies.

Chat messages may be temporarily held in the user's own browser (localStorage). This data is entirely under the user's control.

4. Third-Party Services

Service	Purpose	Privacy Policy
PeerJS	P2P connection signaling	peerjs.com/privacy
Cloudflare Pages	Application hosting	cloudflare.com/privacypolicy
Cloudflare Workers + D1	API, account system, data storage	cloudflare.com/privacypolicy
Cloudflare Turnstile	Bot protection (captcha)	cloudflare.com/privacypolicy

The Developer is not responsible for the privacy practices, data breaches, or service interruptions of third-party services. You are encouraged to review their respective privacy policies.

5. Cookies

Beyarmudu only uses localStorage for user preferences and session data; it does not use third-party tracking cookies or analytics tools. Cloudflare Turnstile may use its own cookies for bot protection.

6. Data Security

WebRTC connections are encrypted by default with DTLS-SRTP. Passwords are stored as hashes on the server, never in plain text.

Warning: Beyarmudu does not guarantee end-to-end encryption (E2EE). The Developer cannot be held responsible for any security breaches, data leaks, or unauthorized access. Do not share sensitive information.

7. User Rights

Users may delete their browser localStorage data at any time.
Users may request deletion of their account and all associated data (profile, XP, statistics).
Users have the right to know what data is stored about them.

8. Data Retention Period

localStorage data: Until the user clears their browser data.
Account data (D1 database): Until account deletion request or after 2 years of account inactivity.
IP address: For the duration of the connection; not permanently stored.
Invite code request data: Maximum 30 days from the request date; deleted after review.

9. Children's Privacy

Beyarmudu is not intended for children under 13 and does not knowingly collect data from this age group. If a parent or guardian becomes aware that their child has shared data, they may contact us.

10. Changes

This Privacy Policy may be updated at any time without prior notice. Continued use of the Application constitutes acceptance of the updated policy.

11. Contact

For privacy-related questions: beyarmudu [at] contact