Introduction
This Data Privacy guide explains the privacy rights you have over your Whispr data and how to exercise them. For a complete description of what we collect and why, see our Privacy Policy.
1. Your Data Privacy Rights
As a Whispr user, you have the right to:
- Access the personal data we hold about you
- Request correction of inaccurate or incomplete information
- Request deletion of your account and all associated data
- Export a copy of your account data
- Withdraw consent for push notifications at any time
- Lodge a complaint with your local data protection authority
2. How to Access or Correct Your Data
Most of your data is visible and editable directly within the app:
- Profile information — Settings > Account
- Linked sign-in providers — Settings > Account > Linked Accounts
- Notification preferences — Settings > Notifications
- Subscription status — Settings > Subscription
If you need a full export of your data or cannot access something through the app, contact us using the email address at the bottom of this page.
3. How to Request Data Deletion
You can request deletion of your Whispr account and all associated data in one of two ways:
Option 1 — In-App Deletion (Recommended):
- Open Whispr
- Go to Settings > Account > Delete Account
- Confirm the deletion request
- Your account and all associated data will be permanently deleted
Option 2 — Email Request:
- Send an email to hello@whisprtalk.com
- Subject: "Data Deletion Request — Whispr"
- Include the email address associated with your Whispr account
- Include your display name as shown in the app
- Optionally include a reason for the deletion
4. What Gets Deleted
When you delete your account, the following data is permanently removed:
- Your account profile and authentication credentials
- Session pairing history and connection data
- Subscription and billing records (purchase receipts retained as required by law)
- Push notification tokens and preferences
- Any settings or preferences stored on our servers
Voice audio is never stored on our servers, so there is no audio data to delete. All voice communication in Whispr is peer-to-peer and never passes through our infrastructure.
5. Timeline
We respond to and process all data privacy requests within the following timeframes:
- We confirm your request within 24–48 hours
- Firebase Authentication credentials are deleted within 30 days
- All Firestore data (sessions, profile, subscriptions) is deleted or anonymized within 90 days
- Backup data is securely destroyed within 90 days
Account deletion is irreversible. Once your data is deleted, your account cannot be recovered.
6. How We Protect Your Data
We use industry-standard practices to keep your data safe:
- HTTPS/TLS encryption in transit and automatic encryption at rest
- Firebase Authentication with role-based access controls
- Firestore security rules that restrict access to authorized users only
- End-to-end encryption (DTLS/SRTP) for premium voice calls
- Regular security reviews and updates
We never sell, rent, or share your personal data with third parties for advertising or marketing purposes.
7. Contact Us
For any data privacy questions or requests, please contact us:
- Email: hello@whisprtalk.com
- Website: https://whisprtalk.com/
We respond to all privacy requests within 24–48 hours and complete data deletion requests within 30 days as required by law.