Privacy at Bastion

Bastion is a privacy-first communication platform. This page covers how we handle data on this marketing site and in the Bastion app.

What we collect on this site

We use Cloudflare Web Analytics to understand aggregate usage of this marketing site. It's privacy-focused and does not use cross-site advertising trackers. Depending on configuration, it may set limited cookies or use similar technologies.

We do not run any other analytics, tracking pixels, or advertising scripts on this site.

What we don't collect

• No email addresses or phone numbers
• No advertising trackers or cross-site tracking
• No third-party analytics beyond Cloudflare Web Analytics
• No personal information of any kind on this marketing site

Bastion app data

The Bastion app is designed with identity isolation as its core privacy property:

• Your identity is generated and stored on your device
• Each circle uses a separate cryptographic identity (circle-scoped pseudonyms)
• The server is designed not to link your identities across circles — there is no global identity graph
• Posts and messages are stored on the server but are not end-to-end encrypted today
• The optional recovery registry is encrypted client-side before being sent to the server

Like any system, these properties depend on the integrity of client software and the device it runs on. If your device is compromised, on-device secrets may be exposed.

For a deeper explanation of Bastion's technical privacy architecture, see the Privacy Model.

Data retention

We retain data only as long as needed to provide the service. We may refine specific retention periods as the product matures. If you delete your account or leave a circle, we make reasonable efforts to remove associated data in a timely manner.

Contact

If you have questions about privacy at Bastion, reach out at privacy@bastion.cc.

Changes

We'll post updates to this page as our practices evolve. No changelog trickery — just updated text on this page.