TERMS OF CRYPTOGRAPHIC CUSTODY

This Agreement constitutes a legally binding contract between you (the **"User"**) and **the BlackBox 1:1 Project Operator** (hereafter, the "Operator", "we", "us", or "our") governing your access to and use of **blackbox1to1** (including its subdomains, client-side scripts, and transit relays, collectively referred to as the **"Platform"** or the **"Service"**).

The Platform operates purely as an automated, zero-knowledge transit relay. All cryptographic operations—including keypair generation (X25519 and ML-KEM-768/Kyber), dynamic symmetric ratchet updating, password-backed local backups (using PBKDF2), and ciphertext payloads (using AES-GCM-256)—are executed **locally inside your browser sandbox**. The Operator possesses **zero knowledge** of your plaintext messages, credentials, cleartext email addresses, or decryption keys.

BlackBox 1:1 is provided to all users completely **free of charge**. There are no subscription fees, premium paywalls, in-app purchases, or direct feature transactions required to establish and utilize E2EE secure messaging channels.

We enforce a strict **zero-advertising policy**. The Platform does not deliver third-party ads, partner with advertising networks like Google AdSense, or display marketing banners, guaranteeing that your user interface and metadata remain entirely untouched by third-party tracking scripts.

To maintain platform integrity as a secure 1:1 utility, users are expected to act with civil behavior. Spamming, coordinating mass phishing networks, or distributing abusive tracking scripts via E2EE payload is strictly prohibited.

**Message Rate Limits:** To guarantee network stability and prevent automated flood attacks, the Platform enforces a strict message rate limit. You may send a maximum of **10 messages per 10 seconds** across all active socket pipelines. Any user index exceeding this rate limit will be throttled.

**User-Initiated Self-Protection (Blocking):** To prevent unwanted communication or harassment, you possess the absolute, unilateral right to block any user via the three-dots options dropdown in the chat header. Blocking an account records their reference strictly to drop real-time socket relays instantly and restrict messaging capabilities.

The Operator operates automated anti-abuse controls (such as connection throttling and blind index rate-limiting) to defend the database against resource depletion. Any account index flagged for coordinating systemic platform abuse will be permanently blocked.

Due to statutory frameworks governing digital privacy, the Platform is restricted to users who are **at least 18 years of age**. Use of this application by anyone under 18 is strictly prohibited.

If we discover or receive proof that an account index belongs to an individual under 18, we will instantly delete and blacklist the corresponding public keys and blind index hashes, terminating all socket routing connections.

The Operator reserves the right, in its sole discretion and without prior notice or liability, to suspend, terminate, or restrict your access to the Service. Suspension or termination of access may be triggered by:

• Violation of the Acceptable Use Policy or Community Guidelines.
• System abuse, high socket rates, or scraping patterns flagged by automated firewalls.
• Subpoenas or requests issued by valid law enforcement agencies or courts.
• **7-Day Account Inactivity Purge:** Anonymous accounts (those without a registered email/password) that exhibit zero active session queries or socket connections for 7 consecutive days are automatically deleted. This permanently wipes the user profile, reported abuse logs, active chats, and E2EE message history.
• **5-Minute Session Inactivity Timeout:** For your device security, local E2EE private key sandbox storage is flushed and session cookies cleared after 5 minutes of total user inactivity (warning displays at 2 minutes and 30 seconds).
• **Interactive Disappearing Messages Purging:** If disappearing mode (24h, 7d, after-seen) is active, message records are permanently pruned from database nodes in accordance with the configured timers. Under "After-Seen" mode, read messages are cleared instantly from the sender's view.
• **Selective Chat Clearing (Clear Chat):** Initiating "Clear Chat" triggers one-sided deletion, instantly sweeping E2EE logs for the initiator's profile. The participant's corresponding logs are preserved in their custody until they choose to clear them.

Upon account termination, the Operator will permanently blacklist or delete the corresponding salted SHA-256 blind index hash and associated public ratchet keys from the server database, cutting off all socket connections.

Because the Platform operates on an end-to-end encrypted (E2EE) model, the Operator does **not** have the physical, digital, or cryptographic ability to review, moderate, censor, or filter communication payloads.

If a valid takedown or abuse report is submitted with cryptographic evidence proving that a specific blind hash index is violating the Prohibited Use Policy (such as distributing malware or CSAM), the Operator's sole moderation capacity is to **permanently delete and blacklist the offender's public blind index hash** from the database, flinging the session into absolute routing suspension.

The codebase, logic layouts, styling, graphics, compilation scripts, and UI designs of the Platform are the exclusive, proprietary intellectual property of the Operator and are protected by worldwide copyright, patent, trademark, and trade secret laws. All Rights Reserved.

Under no circumstances are you granted any rights to copy, replicate, duplicate, clone, modify, adapt, distribute, lease, sell, or redistribute the source code of this Platform. Any attempt to decompile, reverse engineer, or systematically clone the Platform logic or databases is strictly prohibited and constitutes a direct breach of this Agreement.

The name **"blackbox1to1"**, its logo designs, and brand operational marks are the exclusive trademarks of the Operator.

The Platform may contain links to third-party services or utilize external cloud frameworks (such as Supabase, AWS, or Vercel).

The Operator has **no control over** and assumes **no responsibility for** the privacy practices, content, uptime, or data handling policies of any third-party websites or services. You acknowledge that you access and interact with these external systems at your own sole risk.

These Terms, the Privacy Policy, and your relationship with the Platform shall be governed by and construed in accordance with the laws of the jurisdiction hosting the primary databases and socket relays, without regard to conflict of law principles.

**Binding Arbitration:** Any dispute, controversy, or claim arising out of or relating to these Terms, the application, or the operations of the Operator shall be settled exclusively through **binding, individual arbitration** under the rules of the applicable commercial arbitration frameworks of the host servers' region, rather than in a court of law.

**Class Action Waiver:** YOU AND THE OPERATOR AGREE THAT ANY DISPUTES SHALL BE RESOLVED SOLELY ON AN INDIVIDUAL BASIS. YOU EXPRESSLY WAIVE ANY RIGHT TO COMMENCE, PARTICIPATE IN, OR JOIN ANY CLASS ACTION, REPRESENTATIVE SUIT, OR COLLECTIVE ACTION.