Last updated: 7 June 2026 · Draft — pending legal review before launch.
Espero (“we”, “us”) is an encrypted, multilingual messenger. This policy explains what we collect, why, and the choices you have. We built Espero to share the least data needed to deliver translation and messaging — and to be honest about the parts that, by design, the server can read.
The Espero app and the espero.live service are operated by the Espero team. For any privacy question or request, contact hello@espero.live. Our backend is hosted in the European Union (Ireland).
| Data | Why |
|---|---|
| Email address (at sign-up) | To create and secure your account — we send a one-time sign-in code. We do not display it to others. |
| Profile: display name, username, optional bio, avatar, preferred language | So others can recognise you and so messages are translated into your language. |
| Message content & media (text, voice, images) | To deliver messages and translate them for each recipient. Encrypted in transit and at rest; processed by our translation provider to translate. |
| Minimal metadata: who is in a conversation, timestamps, read state, device push token | To route messages, sync devices and send notifications. |
| Subscription status (tier, renewal date) | To unlock Espero+ features. Payment itself is handled by Apple, Google or Stripe — we never see your card details. |
We do not sell your data, show ads, or build advertising profiles. We do not collect your contacts without explicit permission.
Message text (and transcripts of voice notes, and descriptions of images) is sent to our translation provider, Google (Gemini API), to be translated into each recipient's language. It is processed only to produce the translation and is not used by us to train models or for advertising. A single message is translated into all recipient languages in one request. Because translation requires reading the text, the server can read your messages — we are explicit about that rather than claiming end-to-end encryption we don't provide.
Each processes data only to provide its service to Espero.
All traffic is encrypted in transit (TLS), and message content is encrypted at rest. To translate a message, our servers process its text — so by design they can read it; we don't sell it or use it for ads. Full details are in our security model.
Messages are kept so your conversations are available across your devices, until you delete them or close your account. You can delete your account at any time — in the app (Settings → Account) or by emailing us — which removes your profile and the messages we can identify as yours. Full details and what is retained: Delete your account & data.
The espero.live website uses no advertising or tracking cookies. The app and web app store a little data on your device (e.g. your sign-in token, theme and language choice) so the product works — not to track you.
Subject to applicable law (including the EU GDPR), you can access, correct, export or delete your data, and object to or restrict certain processing. To exercise these rights, email hello@espero.live. You can also withdraw consent (e.g. contact access, notifications) in your device settings.
Espero is not directed to children under the age required in your country (at least 13, or higher where local law requires). We do not knowingly collect data from them.
Our primary storage is in the EU. Some sub-processors (e.g. translation, payments) may process data in other regions under appropriate safeguards such as Standard Contractual Clauses.
We will update this policy as Espero evolves and note the date above. Significant changes will be announced in-app.