Skip to content
SECURITY

Security & Privacy

How VoxCor is built to protect the people who use it.

No accounts. No identity.

VoxCor does not require a name, email address, phone number, or any form of personal account to function. The platform operates entirely on an anonymous device identifier that is generated locally and not linked to your identity.

  • No login, no password, no profile
  • No advertising ID or hardware identifier tracking
  • Session data is anonymised within 24 hours

Encrypted communication

All communication between the app and the VoxCor platform uses HTTPS/TLS encryption. Data in transit is not accessible to third parties.

QR tokens used to join events and venues are validated using secure hashing. Tokens are never stored in plain text.

Data isolation and access controls

VoxCor enforces strict data isolation at the database level — not just the app. Your requests stay separate from everyone else's.

  • Standard mode requests are never visible to event or venue participants
  • Event requests are isolated to that event's participants
  • Venue requests are isolated to that venue's participants
  • Role-based permissions control who can request and who can respond

Minimal data collection

VoxCor collects only what's needed to send help requests and match you with someone nearby.

Collected

  • Anonymous device identifier
  • Request type and category
  • Approximate location (routing only)
  • Request lifecycle timestamps
  • Crash and diagnostic logs

Never collected

  • Name, email, phone number
  • Photos, contacts, biometrics
  • Persistent location history
  • Advertising identifiers
  • Financial account data

Mutual confirmation layer

Before two participants make contact, VoxCor requires both to confirm the interaction using a shared visual halo pattern. This prevents unknown strangers from approaching a requester by claiming to be their matched helper.

The confirmation is real-time and mutual - both sides must confirm independently. Either side can withdraw at any point.

No message history

VoxCor has no chat or messaging feature. There is no stored conversation history, no inbox, and no way to send messages through the platform.

This removes a significant surface area for data exposure. What is never stored cannot be leaked.

Third-party services

VoxCor uses a small number of trusted third-party services required to operate the platform:

  • Supabase - database and server infrastructure
  • Firebase (Crashlytics) - crash and diagnostic reporting
  • Firebase Cloud Messaging - push notifications
  • Stripe - payment processing for event and venue provisioning (website only)

VoxCor does not sell data and does not share data for advertising or cross-context tracking.

Privacy PolicySafety NoticeTerms of Service

Safety notice

VoxCor is a voluntary signaling platform for user-to-user interactions. Participants are independent individuals, not VoxCor employees, staff, or agents. Responses are voluntary and not guaranteed. VoxCor does not provide emergency, medical, or security services and does not verify, supervise, or control responders. Users act at their own discretion and may disengage at any time. If you are in immediate danger, contact local emergency services.

Review our Safety and Privacy pages for more details.