I joined the Matrix instance and the dev said, for some reason, F-droid has the old version (1.0.21)rather than current(1.0.27). They are updating the repos and working on it.
Lots of things aren’t even possible to be encrypted on matrix, such as emoji reactions. Those are always sent in clear text.
…just wait till someone is convicted for arson because the police AI dragnet bots flagged you as guilty because you left a “fire” emoji at the wrong time
TL;DR It uses the Matrix protocol to make every post E2E encrypted in the same way a Matrix chat is. Except they added more separation between people in the “Circles” functionality. Instead of everyone seeing all content like in a chat room, you have to invite people to follow your timeline. And only those people who have been invited can see your posts, and vice versa. I’m not sure he said it specifically, but it was implied that unless people have invited each other to see their posts, they can’t interact with each other in the same circles (he used an example of two people not liking each other and both being able to see a 3rd person’s timeline, but not each others timeline/posts). So essentially it offers encryption and social media like usage but with a sane privacy stance…aka nobody can find you via stalking your mutuals and nobody can just google and DM you out of the blue. Basic photo and sharing is available, apparently improving those features is what is planned for this year. You can also self host it if you wanted, as it just runs off a Matrix server (although they currently provide a US and Europe matrix server run by the FUTO company that funds the app development). Looks like they plan on charging for storage space (1.99$/month for 10GB is what it says in the app right now), and I’m not sure how much storage you get for free.
Oh yes the “Matrix ‘leaks’ metadata” argument. It’s needed for federation. If you need full metadata protection your ONLY options are Signal and Session.
If you use the App with an account hosted on a third-party server, then there are only a few cases where FUTO may learn any information at all about your use of the App.
If you have the App configured to use Google push notifications, then FUTO’s push notification gateway will be involved in delivering push notifications from Google to your device. Push notifications include information on the Matrix event that generated the push, including: the human-readable name and Matrix user identifier for the user who sent the event and the Matrix room identifier for the room containing the event. Users who desire a greater level of privacy can configure the App to use UnifiedPush instead of Google Cloud Messaging. When a user on a third-party server receives a UnifiedPush notification through their third-party push server, FUTO does not see the notification or learn anything about it.
If you obtained the App from the Google Play Store, and the App crashes, then we will receive a Firebase crash report.
If you sign up for our mailing list in the app, then we learn your email address.
The notification should be UnifiedPush by default, and crash debug reports should be opt-in, not automatically sent out to the dev via Google… (I don’t think it is even possible to opt out)
There’s hardly anything in the privacy policy, it basically says they don’t collect any data beyond what is strictly necessary to provide the service. And then they only use it for exactly that purpose.
Add comment