Privacy Policy

The short version

We store as little as possible. We encrypt everything we do store. We never train on your conversations. You can delete everything, anytime, permanently.

What we collect

• Anonymous accounts collect zero personal information.
• Email accounts collect only your email and encrypted password.
• All accounts collect encrypted conversation data that we cannot read, subscription status, and standard server logs deleted after 7 days.

What we never collect

• Plaintext message content
• Phone numbers
• Real names
• Behavioral tracking
• Advertising data
• Device fingerprints

Encryption

All messages are encrypted with AES-256-GCM before storage. Hush does not hold a master decryption key. Even we cannot read your messages.

AI processing

Messages are processed via the Anthropic Claude API to generate responses. Anthropic processes requests under their own privacy policy at anthropic.com/privacy.

VPN recommendation

For maximum privacy, Hush strongly recommends using our service in combination with a reputable VPN service. This ensures your IP address is masked at both the Hush server level and the Anthropic API level, providing the strongest possible anonymity. An anonymous account plus a VPN equals maximum privacy protection.

No training

Your conversations are never used to train AI models. Ever.

No human review

No Hush employee or contractor ever reads your conversations. Ever.

Data retention

You control retention completely. Set auto-delete timers for 24 hours, 7 days, or 30 days. Delete individual conversations anytime. Wipe your entire account and all data permanently anytime using the Wipe All Data button.

Payments

Processed by Stripe. Hush never stores your credit card information.

Children

Hush is not intended for users under 13.

Contact