If you discover a security vulnerability, please report it by:

1. Email: Create an issue on GitHub Issues with label security
2. Do not disclose the vulnerability publicly until it has been addressed

We will respond within 48 hours and provide updates on the fix progress.

• End-to-end encryption by default
• No data collection (see Privacy Policy)
• Open source - code can be audited
• Based on Matrix protocol security standards