Our Security Philosophy
We believe that true privacy isn't just a policy—it's a technical architecture. We built Couple Games on zero-trust principles, meaning the system is mathematically designed so that we physically cannot access your private date moments.
Video & Audio: WebRTC
Your video feeds are not processed by centralized cloud servers (like Zoom or Skype). We use Web Real-Time Communication (WebRTC). The server acts purely as a "Signaling Server" (using Socket.io) to exchange IP candidates. Once the connection is established, your video feed acts as a direct tunnel between your phone and your partner's phone.
Because there is no intermediate server hosting the video buffer, there are zero video logs and zero audio recordings stored anywhere in the world.
Chat: Web Crypto API (AES-GCM)
Unlike standard chat apps, our chat widget is built custom for privacy. We use the browser's native Web Crypto API. Here is the exact cryptographic flow:
- Upon joining, both clients generate an ECDH (Elliptic Curve Diffie-Hellman) key pair.
- They exchange public keys over the socket and independently compute a shared AES-GCM 256-bit symmetric key.
- Every chat message is encrypted locally before transmission.
- The server relays base64 encoded ciphertext. It does not possess the derived AES key to decipher the payload.
Openness
GuessKaro relies on open web standards rather than obscure proprietary tracking plugins. Our commitment to you is continuous transparency. We will always declare what data we require (essentially just your room PIN and active socket ID) and immediately discard it the second you leave.