top of page

Privacy Policy

Clam Messenger Privacy Policy

Last updated: June 30, 2026

This Privacy Policy explains how Clam Messenger (“Clam”, “Clam Messenger”, “the App”, “we”, “us”, or “our”) handles information when you use the App.

Clam is designed for private messaging.

We try to collect and process only the information needed to create accounts, deliver messages, protect the service, provide support, and operate the App.

By using Clam, you agree to this Privacy Policy.

1. Information we do not read

Clam uses end-to-end encryption for supported messages and attachments. This means we cannot read the content of your end-to-end encrypted messages or attachments.

We do not have access to your private encryption keys.

We do not store your recovery phrase. If you lose your recovery phrase, we may not be able to restore your account or encrypted data.

We do not sell your personal data.

We do not use your messages or attachments for advertising.

We do not use your message content to track you.

2. Information processed by the App

Depending on how you use Clam, the App may process the following information:

  • your Clam account ID or public ID;

  • your device ID or device-related authentication information;

  • public cryptographic keys needed for account authentication and encrypted messaging;

  • contacts you add inside Clam;

  • blocked accounts or blocked devices;

  • group membership information, such as group IDs, member public IDs, member status, and group event information;

  • encrypted messages, encrypted attachment pointers, encrypted group control data, and encrypted attachment blobs needed for delivery;

  • delivery, read, acknowledgement, and synchronization information;

  • app settings, muted chats, local aliases, and local app preferences;

  • crash, diagnostic, or support information if you choose to send it to us.

Some of this information may be stored locally on your device. Some technical information may be processed by our servers or backend providers so the App can work.

3. Local data stored on your device

Clam stores most app data locally on your device. This may include your profile, contacts, messages, groups, saved notes, attachments, app settings, encryption state, trust records, and related app data.

Local app data is designed to be encrypted at rest where supported by the App. Some temporary files, previews, thumbnails, or cached files may exist on your device so the App can display attachments, open files, or work faster.

Your device, operating system, backups, iCloud settings, and local security settings may also affect how app data is stored, backed up, restored, or deleted.

4. Server-side data

When you use server-backed features, our servers or backend providers may process technical data needed to operate the service, such as:

  • account public IDs;

  • device authentication records;

  • public keys and prekey bundles used for encrypted messaging;

  • encrypted message or attachment delivery records;

  • recipient information needed to deliver messages;

  • timestamps and delivery status information;

  • group membership metadata;

  • encrypted attachment storage records;

  • abuse reports or support requests you submit.

For supported end-to-end encrypted content, the server stores or processes encrypted data only. The server is not designed to store plaintext message content, plaintext attachment content, plaintext group titles, private encryption keys, or decrypted content.

Some server records may be deleted after successful delivery, acknowledgement, download, or cleanup. Some records may remain longer where needed for security, abuse prevention, service reliability, legal compliance, or technical operation.

5. Messages and attachments

Your messages and attachments may be stored on your device and on the recipient’s device.

Encrypted messages, encrypted attachment pointers, or encrypted attachment blobs may pass through our servers to support delivery. We cannot read end-to-end encrypted message or attachment content.

After a message or attachment is delivered, downloaded, acknowledged, or cleaned up, server-side delivery records or encrypted blobs may be deleted where technically supported. However, deleting server-side data does not delete copies already stored on your device, the recipient’s device, screenshots, exports, device backups, or other places outside our control.

6. Contacts and groups

Contacts are used so you can message other Clam users.

Group features may require processing group metadata, such as group ID, creator or member public IDs, member state, event type, and timestamps. Group message content and protected group control data are intended to remain encrypted.

Do not use group names, profile names, or other visible fields to share sensitive information unless you understand how they are handled by the App.

7. Reports, abuse prevention, and support

Clam may allow you to block users, block devices, or report abuse.

Because Clam is designed for private communication and uses end-to-end encryption for supported content, we may not be able to review message content unless you choose to provide it to us directly, for example through screenshots, descriptions, attachments, or a support request.

When you contact us or submit a report, we may process the information you provide, such as your email address, account ID, screenshots, message details you choose to share, device information, or a description of the issue.

We may use this information to provide support, investigate abuse, protect users, enforce our Terms of Use, improve the App, or comply with legal obligations.

8. Notifications

Clam may use local or system notifications to alert you about messages or app events.

Notification delivery may involve your device operating system and platform notification services. Depending on your device settings, notification previews may be visible on your lock screen or notification center.

You can manage notification permissions in your device settings.

9. Third-party services

Clam may rely on third-party services to operate the App, such as:

  • Apple services and App Store distribution;

  • backend hosting and database providers;

  • storage providers;

  • crash, diagnostic, or support tools, if enabled;

  • network and infrastructure providers.

These third-party services may process technical information according to their own privacy policies.

Clam does not use third-party advertising networks in the current version of the App. If we introduce advertising in the future, we will update this Privacy Policy. Advertising partners will not be given access to the content of your end-to-end encrypted messages or attachments.

10. How we use information

We use information to:

  • create and authenticate accounts;

  • deliver messages and attachments;

  • support encrypted messaging;

  • sync group membership and delivery state;

  • provide blocking, reporting, and abuse prevention features;

  • operate, secure, debug, and improve the App;

  • respond to support requests;

  • comply with legal obligations;

  • enforce our Terms of Use.

11. Data retention

We keep different types of information for different periods, depending on what is needed to operate Clam.

Local data may remain on your device until you delete it, delete your account or profile, remove the App, clear app data, or change your device backup settings.

For end-to-end encrypted messaging, server-side encrypted delivery records and encrypted attachment data may be deleted after successful delivery, acknowledgement, download, or technical cleanup where supported. If a recipient is offline, delivery is not complete, an attachment has not been downloaded, or cleanup has not yet occurred, encrypted server-side records may remain longer.

Account records, device authentication records, public keys and prekey bundles needed for encrypted messaging, group membership metadata, support requests, abuse reports, security records, and legal records may be kept longer if needed to operate the App, protect users, prevent abuse, resolve issues, or comply with law.

Deleting server-side delivery records does not delete messages, attachments, screenshots, exports, or backups already stored on your device, on another user’s device, or outside our control.

12. Account and data deletion

You may stop using Clam at any time.

You can delete your Clam account, local profile, and local app data from within the App where this feature is available.

When you delete your Clam account in the App, we will delete or deactivate server-side account records associated with that account where technically possible, except for limited information we may need to keep for security, abuse prevention, service operation, dispute resolution, or legal compliance.

Deleting local data from your device may not delete copies stored on other users’ devices, in device backups, in screenshots, exports, or in systems outside our control.

After account or local data deletion, you may lose access to your account, messages, contacts, groups, attachments, recovery phrase, and encrypted local data. We may not be able to restore deleted data.

13. Your choices

You can control some privacy-related settings by:

  • choosing what information you share in messages, reports, and support requests;

  • blocking accounts or devices;

  • deleting local chats, notes, attachments, or profiles where supported;

  • managing notification permissions in your device settings;

  • controlling device backups and iCloud settings;

  • uninstalling the App;

  • contacting us about privacy requests.

14. Children

Clam is not directed to children and is not intended for users under the age required by applicable law to use online communication services.

We do not knowingly collect information from children where parental consent is required by law. We may take appropriate action where required by applicable law.

15. Security

We use technical and organizational measures designed to protect the App and the information we process.

However, no app, device, network, or security system can be guaranteed to be protected against every possible security risk. You are responsible for protecting your device, recovery phrase, passwords, backups, and access to your account.

16. International use

Clam may be operated from, and data may be processed in, countries other than the country where you live.

By using Clam, you understand that information may be processed in countries that may have different data protection laws than your country.

17. Changes to this Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top of this page. For important changes, we may also provide notice through the App, the App Store listing, our website, or another reasonable method where appropriate. Your continued use of Clam after the updated Privacy Policy becomes effective means you accept the updated Privacy Policy.

18. Contact

For support, questions, abuse reports, or legal requests, please contact us through our Contact Us page

bottom of page