SimpleX-Chat/docs/guide/privacy-security.md

---
title: Privacy & security
---
# Privacy and Security

SimpleX Chat default configuration aims to balance privacy, security and convenience. You may want to change the default options.

This page lists all the features and options that affect privacy and security.

## Privacy and Security settings

These settings are available in the [Privacy & Security settings](./app-settings.md#privacy-and-security).

## Security code verification

<img src="../../blog/images/20230103-verification.png" width="288">

While SimpleX Chat always establishes connection via link passed via an independent channel, so it is already more protected than other apps, there are scenarios when the invitation links can be substituted in transit (MITM attack). To protect against such attacks, you should verify the security code with your contacts:

- open the conversation with the contact
- tap the contact name on top of the conversation
- tap "Verify security code"
- ask your contact to do the same
- the connection is secure if you and your contact have the same security code

This can be validated by one of the following:

- one of you can scan the security code from their device, if the codes match the contact will be marked as verified on the device that scanned the code.
- simply tap mark verified if you trust the confirmation from your contact that the code is verified.
- you can also read the contact over the voice call.

Read more in [this post](../../blog/20230103-simplex-chat-v4.4-disappearing-messages.md#connection-security-verification)

## Database passphrase

When installed, the app generates a random passphrase for the chat database and stores it securely in KeyChain (iOS) or using KeyStore (Android, TPM module is used when available). You can set your own passphrase and also remove it from the device, in which case you will need to enter it every time you start the app, and notifications may be limited, in the [Database passphrase & export](./managing-data.md#database-passphrase) settings.

## Incognito mode

This feature generates a random profile name for each new contact. Read more in [Incognito mode](./app-settings.md#incognito).

## Hidden profiles

This feature allows to hide some of your chat profiles with the password. Read more in [Hiding and muting chat profiles](./chat-profiles.md#hiding-and-muting-chat-profiles).

## Network settings

[Transport isolation (BETA)](./app-settings.md#transport-isolation-beta) allows to isolate you traffic with each contact in a different TCP connection (and Tor circuit).

## Using Tor

<img src="../../blog/images/20220808-tor1.png" width="330"> &nbsp; <img src="../../blog/images/20220808-tor2.png" width="330">

To connect to SMP relays (messaging servers) via Tor you need to install Orbot app.

Android: use Orbot app as SOCKS proxy on port 9050 (default) and enable [Use SOCKS proxy](./app-settings.md#use-socks-proxy-android-only).

iOS: use Orbot app as VPN provider and enable VPN.

You can also change which server addresses are used with [Use .onion hosts option](./app-settings.md#use-onion-hosts).
website: add docs to website (#2080) * website: add fontmatter & improve image URLs where necessary * website: add docs to website * website: add prismjs for code highlighting * website: change npm install position in web.sh * website: fix an image URL in lang/cs/README.md * website: improve image paths in lang/cs/translations.md * website: add responsiveness & improve stylings of docs * website: add dir to navbar in blog & docs * website: remove scroll in mobile dropdown menu * website: remove rfcs & add guide docs to website * website: remove file renaming script from web.sh * website: add menu to docs in nav * website: add hash list & add scroll to headers * website: customize docs frontmatter through JS * website: remove supported_languages.json * website: move merge_translations.js to JS folder * website: add the following changes to docs - add frontmatter to new doc merged from master - add ignoreForWeb property to frontmatter of README.md docs * website: remove package-lock.json from .gitignore * website: add package-lock.json from .gitignore * website: add no docs message to docs dropdown * website: improve the sidebar of docs * website: add revision date to docs * website: add script to add version to docs frontmatter * website: add layout to display message in docs if its version is old * website: improve nav responsiveness * website: remove frontmatter form main README & rfcs * website: remove rfcs from website folder * website: add ignore condition for rfcs in .eleventy * website: remove frontmatter from lang README docs * website: remove README from website's lang docs * website: add guides menu in nav * website: following changes - add docs_dropdown.json - extend reference menu in nav - remove docs menu from nav * website: fix in docs sidebar * website: revert main docs README.md files * website: revert main docs README.md files * website: move scripts out of js that are for build * website: remove displayAt form guide docs * website: create a docs_sidebar.json & shift to that approach * update navigation * website: set navbar * website: add icons to external links * website: change the approach for docs sidebar creation * website: update docs template * website: add some strings to en.json and map them accordingly * remove icon --------- Co-authored-by: Evgeny Poberezkin <2769109+epoberezkin@users.noreply.github.com> 2023-05-01 02:31:23 +05:00			`---`
			`title: Privacy & security`
			`---`
guide: initial readme (#2006) * guide: initial readme * update guide * guide: initial documentation for audio and video calls (#2104) * Added documentation for audio and video calls. * Minor update * corrections --------- Co-authored-by: Evgeny Poberezkin <2769109+epoberezkin@users.noreply.github.com> * remove trailing spaces and typos * docs: update audio-video calls guide * add app settings * edit guide, link images and posts * fix image links * update * update 2 * remove link * remove spaces * move images * bold * add image --------- Co-authored-by: Silent-Ninja <128339587+silent-ninja-1@users.noreply.github.com> 2023-03-30 15:17:13 +01:00			`# Privacy and Security`

			`SimpleX Chat default configuration aims to balance privacy, security and convenience. You may want to change the default options.`

			`This page lists all the features and options that affect privacy and security.`

			`## Privacy and Security settings`

			`These settings are available in the [Privacy & Security settings](./app-settings.md#privacy-and-security).`

			`## Security code verification`

			`<img src="../../blog/images/20230103-verification.png" width="288">`

			`While SimpleX Chat always establishes connection via link passed via an independent channel, so it is already more protected than other apps, there are scenarios when the invitation links can be substituted in transit (MITM attack). To protect against such attacks, you should verify the security code with your contacts:`

			`- open the conversation with the contact`
			`- tap the contact name on top of the conversation`
			`- tap "Verify security code"`
			`- ask your contact to do the same`
			`- the connection is secure if you and your contact have the same security code`

			`This can be validated by one of the following:`

			`- one of you can scan the security code from their device, if the codes match the contact will be marked as verified on the device that scanned the code.`
			`- simply tap mark verified if you trust the confirmation from your contact that the code is verified.`
			`- you can also read the contact over the voice call.`

			`Read more in [this post](../../blog/20230103-simplex-chat-v4.4-disappearing-messages.md#connection-security-verification)`

			`## Database passphrase`

			`When installed, the app generates a random passphrase for the chat database and stores it securely in KeyChain (iOS) or using KeyStore (Android, TPM module is used when available). You can set your own passphrase and also remove it from the device, in which case you will need to enter it every time you start the app, and notifications may be limited, in the [Database passphrase & export](./managing-data.md#database-passphrase) settings.`

			`## Incognito mode`

			`This feature generates a random profile name for each new contact. Read more in [Incognito mode](./app-settings.md#incognito).`

			`## Hidden profiles`

			`This feature allows to hide some of your chat profiles with the password. Read more in [Hiding and muting chat profiles](./chat-profiles.md#hiding-and-muting-chat-profiles).`

			`## Network settings`

			`[Transport isolation (BETA)](./app-settings.md#transport-isolation-beta) allows to isolate you traffic with each contact in a different TCP connection (and Tor circuit).`

			`## Using Tor`

			`<img src="../../blog/images/20220808-tor1.png" width="330">   <img src="../../blog/images/20220808-tor2.png" width="330">`

			`To connect to SMP relays (messaging servers) via Tor you need to install Orbot app.`

			`Android: use Orbot app as SOCKS proxy on port 9050 (default) and enable [Use SOCKS proxy](./app-settings.md#use-socks-proxy-android-only).`

			`iOS: use Orbot app as VPN provider and enable VPN.`

			`You can also change which server addresses are used with [Use .onion hosts option](./app-settings.md#use-onion-hosts).`