Support

Both people exchange contact cards — by scanning a QR code in person or sharing it through another channel. You can only message each other once both sides have added the contact.

Phantom doesn't use phone numbers or emails as identifiers. Your identity is a random cryptographic ID generated on your device, so there's nothing tying your account to your real-world identity.

Download the APK from this site, then open it on your Android device. You may need to allow installation from unknown sources in your settings. We recommend verifying the SHA-256 checksum shown on the download page first. Google Play availability is coming.

By default messages live only in the app's memory and disappear when you close it. You can optionally enable encrypted on-device storage per contact — it's protected by your PIN and encrypted at rest. Nothing readable is ever stored on our servers.

For each contact you can turn on auto-delete and choose how long messages are kept. After that period they're removed from the app.

Yes. Phantom uses multiple relays, domain fronting, and transport fallback to keep working where connections are filtered or unstable.

Yes. Calls are end-to-end encrypted and routed through a relay you choose — there's no separate call server that can listen in.

Because there are no accounts on our servers, there's no server-side recovery. Your contacts and any saved chats live only on your device. Losing the device means losing that data — which is also what keeps it private.

Phantom uses well-established protocols (Double Ratchet, Noise, ChaCha20-Poly1305, X25519). A formal independent audit hasn't been completed yet; we're transparent about that.

Use the in-app feedback option, or email us.