# Security Policy

## Reporting Security Vulnerabilities

We take security seriously. If you discover a security vulnerability, please report it to us privately.

### How to Report

- **Email**: security@chat.lovemaker.us
- **Response Time**: We aim to respond within 24 hours
- **Disclosure**: We follow responsible disclosure practices

### Security Features

- End-to-end encryption using AES-256-GCM
- Client-side encryption/decryption only
- No message storage on servers
- Anonymous authentication
- Auto-expiring messages

### Security Best Practices

- Messages are encrypted before leaving your device
- Encryption keys are never sent to our servers
- All data is ephemeral and automatically deleted
- Use strong, unique passwords for your accounts

Last updated: 2025-08-24