# beChat

> beChat is a post-quantum, zero-knowledge private messaging app for Android. Accounts are anonymous (8-character PIN + device fingerprint). No email, phone number, or name is required. Messages use Signal Protocol with post-quantum cryptography (Kyber-1024, Dilithium-5, SPHINCS+). Attachments are encrypted with AES-256-GCM before upload. The server cannot read message content. No analytics, ads, or third-party tracking SDKs. Hosted on an independent European provider. Available now in closed alpha on Google Play for Android.

## Links

- [Home](https://bechat.world/)
- [Features](https://bechat.world/features)
- [How it works](https://bechat.world/how-it-works)
- [What is post-quantum encryption?](https://bechat.world/how-it-works/post-quantum-encryption)
- [Why SMS is fundamentally broken](https://bechat.world/how-it-works/why-sms-is-broken)
- [Security model](https://bechat.world/security)
- [FAQ](https://bechat.world/faq)
- [Download](https://bechat.world/download)
- [Download for Android](https://bechat.world/download/android)
- [Download for iOS](https://bechat.world/download/ios)
- [Download for desktop](https://bechat.world/download/desktop)
- [Privacy policy](https://bechat.world/privacy-policy)
- [Data deletion instructions](https://bechat.world/data-deletion)
- [Terms of service](https://bechat.world/terms)

## Key facts

- Product: Private messaging mobile application (Android, closed alpha)
- Publisher: lab48
- Package ID: com.lab48.bechat
- Domain: bechat.world
- Contact: privacy@bechat.world
- Crypto stack: Signal Protocol + post-quantum (Kyber-1024, Dilithium-5, SPHINCS+)
- Storage: SQLCipher-encrypted on-device; server stores only encrypted blobs
- Infrastructure: Independent European hosting provider (not hyperscaler cloud)
- Notifications: Encrypted FCM payloads (no message content); only component transiting Google infrastructure
- Alpha access: Join https://groups.google.com/g/bechat-alpha-testing, then install via Play Store
- Governing law: Belgium