explainx / blog
SimpleX Chat has no phone numbers, no usernames, no IDs. After Telegram CEO arrest and global messaging bans, here is why that matters and how to set it up.
Jun 21, 2026
Voicebox combines what ElevenLabs does (voice cloning, TTS) with what WisprFlow does (global dictation) β plus MCP so your AI agents can speak in voices you've cloned. 31,000+ stars. Free and open source. All processing stays on your machine. Here is what it does and how to set it up.
Jun 2, 2026
Odysseus has exploded to 22.4K GitHub stars as developers flock to this self-hosted AI workspace. With agentic capabilities, deep research, coding tools, and email/calendar integrationβall running on your own hardwareβit's becoming the go-to alternative to ChatGPT and Claude for privacy-conscious users.
May 24, 2026
Perplexity has released Bumblebee, a read-only inventory scanner designed to answer one critical supply chain question: when an advisory names a vulnerable package, which developer machines have it installed right now? Built in Go with zero dependencies, it scans lockfiles, manifests, and MCP configs across macOS and Linux.
In August 2024, French authorities arrested Telegram CEO Pavel Durov at Paris-Le Bourget airport. The charges included complicity in distributing illegal content and money laundering through insufficient content moderation. He was released on bail under judicial supervision and Telegram subsequently began cooperating with law enforcement requests β including sharing user IP addresses and phone numbers.
The incident was a turning point for the "privacy messaging" conversation globally. Telegram, long positioned as a private messenger, turned out to hold exactly what governments wanted: identifiable user data linked to phone numbers, stored message histories, and a central authority that could be pressured.
The same pattern plays out across regions. Governments send legal notices to WhatsApp. Court orders demand user identities from Signal (which has resisted by holding minimal data). Messaging apps across Asia face regulatory pressure to register users and maintain logs. The EU's Chat Control proposal would mandate scanning of encrypted messages before sending. The UK Online Safety Act was used to pressure platforms to weaken encryption.
Against this backdrop, SimpleX Chat is worth understanding β not as a niche tool for activists, but as a messaging architecture that eliminates the attack surface that all of these pressures target: the existence of a user identity tied to a contact graph.
Every other messaging platform β even the most private β assigns users some form of persistent identifier:
| Platform | Identifier type | Who can see it |
|---|---|---|
| Phone number | Meta, all your contacts, any legal request | |
| Telegram | Phone number | Telegram, contacts, compellable by courts |
| Signal | Phone number | Signal servers (but Signal resists disclosure) |
| Matrix | Username + homeserver | Federated β visible to multiple servers |
| Session | Randomly generated ID | Anyone you message; correlatable across contacts |
| SimpleX | None | No identifier exists |
The absence of a user identifier is not a privacy feature bolted on β it is the architectural foundation. There is no account to subpoena, no user ID to correlate, no phone number to tie to a real-world identity.
What SimpleX uses instead: pairwise per-queue identifiers. Each conversation creates two unidirectional message queues, each with its own address pair. If you have 50 contacts, there are up to 100 queues β none of which share any identifier in common. Your conversations cannot be linked to each other by observing the servers.
Telegram's design stores cloud messages server-side by default. Only "Secret Chats" use E2E encryption β regular chats and group chats are encrypted in transit but Telegram holds the keys. This means:
When French authorities arrested Durov, they had leverage: a centralized authority with access to data about hundreds of millions of users. After the arrest, Telegram began publishing a Transparency Report showing legal data handovers β data that had always existed, now officially acknowledged.
The lesson for privacy-conscious users: the architecture matters more than the policy. Telegram's privacy policy was strong. Its architecture stored identifiable data. Under sufficient legal or political pressure, the architecture is what courts and governments can actually access.
SimpleX's response to this is architectural, not contractual. There is no user data to hand over, because user data is never held.
Durov's arrest is one high-profile example of a broad trend:
Europe: The EU's Chat Control regulation β still contested as of 2026 β would require messaging apps to scan content before encryption. The UK Online Safety Act compelled Ofcom to issue guidance that could require backdoors in E2E encrypted apps. Apple and Signal both threatened to leave the UK market rather than comply.
Asia: Multiple governments have mandated that messaging apps register users with real names and maintain logs accessible to authorities. Regional messaging platforms complying with these requirements effectively function as surveillance infrastructure. When apps resist, they face blocking β the pattern seen repeatedly across the region with VPNs, messaging apps, and social platforms.
Latin America: Brazil has suspended WhatsApp multiple times following court orders demanding user data in criminal investigations. Each suspension lasted days before compliance or court reversal.
Russia: Russia blocked Telegram in 2018 (then unblocked in 2020). It has blocked Signal. VPN services that help users reach blocked platforms face their own blocking orders.
For the can governments ban AI and tools question β the answer for messaging apps is clearly yes, and they do. The same digital sovereignty pressures driving AI export controls apply to communication infrastructure.
SimpleX uses multiple encryption layers β the design is deliberately redundant.
Each message queue has its own encryption layer using NaCl cryptobox. Messages in different queues have different ciphertext even if the plaintext is identical β so a server-level attacker cannot correlate traffic across conversations even if they break TLS.
The same algorithm used in Signal β every message is encrypted with its own ephemeral key. This gives:
Since v5.6 (March 2024), SimpleX runs post-quantum resistant key exchange at every ratchet step using CRYSTALS-Kyber (KEM). This means messages are protected against "harvest now, decrypt later" attacks β an adversary storing encrypted traffic today cannot decrypt it with a future quantum computer.
The post-quantum layer is the same architectural approach Apple added to iMessage in 2024, but SimpleX ships it as a default on an open protocol.
An additional NaCl cryptobox encrypts messages from server to recipient. This ensures there is no common ciphertext between what the server receives and what it sends β traffic correlation at the server level is frustrated even if TLS is compromised.
A SimpleX server knows:
A SimpleX server does not know:
| Feature | SimpleX | Signal | Telegram | Matrix |
|---|---|---|---|---|
| User identifier | None | Phone number | Phone number | Username + server |
| E2E by default | All messages | All messages | Secret Chats only | Room-dependent |
| Post-quantum | Yes (v5.6+) | Yes (2023) | No | No |
| Metadata exposure | Minimal (no graph) | Contact graph to Signal | Full graph to Telegram | Graph visible to homeserver |
| Server holds messages | Until delivered only | Until delivered | Indefinitely (cloud) | Indefinitely |
| Self-hostable | Yes (SMP servers) | No | No | Yes (homeservers) |
| Legal data to hand over | None | Minimal (account creation date, last connected) | Phone + contact graph + cloud messages | Server logs |
| Security audit | Trail of Bits Γ2 | Multiple audits | None published | Partial |
| Open source | AGPL-3.0 | GPL-3.0 | Partial (client only) | Apache-2.0 |
| Stars (GitHub) | 16k | 11k | N/A | Matrix spec: ~1.2k |
The signal-to-noise on "privacy" claims varies enormously. Signal is genuinely strong β its legal exposure is minimal because it holds minimal data. But Signal requires a phone number, which ties your identity to a real-world registration and makes your contact graph visible to Signal servers. SimpleX requires nothing.
The fastest path:
On first launch:
curl -o- https://raw.githubusercontent.com/simplex-chat/simplex-chat/stable/install.sh | bash
simplex-chat
This drops you into an interactive terminal client. Type /help for a full command list. Useful for automation, bots, or headless servers.
Desktop clients (available for Linux, macOS, Windows) let you link your mobile profile to the desktop β synchronized via a QR code scan, using the same post-quantum encrypted protocol. Your mobile device is the identity source; desktop is a mirror.
SimpleX has no directory, no username lookup. You connect by sharing a link:
The security property: even if the channel you used to share the link is monitored, the link is a one-time invite that establishes a key exchange. An observer can see the link but cannot read subsequent messages or determine who you are connecting with.
After connecting: you can do an out-of-band verification by reading a short security code to each other over a call to confirm no man-in-the-middle attack occurred.
If you want to operate your own relay:
# Install
curl -o smp-server https://github.com/simplex-chat/simplexmq/releases/latest/download/smp-server-ubuntu-20_04-x86-64
chmod +x smp-server
# Initialize (generates TLS cert and server config)
./smp-server init -l
# Run
./smp-server start
The server outputs a connection address like smp://fingerprint@your-domain:5223. Add this to your SimpleX app under Settings β Network & Servers β SMP Servers.
You can still communicate with anyone on the default servers β the network is not siloed by which server you use. SimpleX is more like email (any server can relay to any other) than WhatsApp (one central server).
One-click deployment is available on Linode if you prefer a GUI setup.
Groups work without central group membership records. Group invitations are passed via existing connections:
Large groups are currently in development (π in the roadmap), with short group links and improved stability as active work items.
Tor routing: Go to Settings β Network & Servers β Use Tor. Routes all SMP traffic through Tor β hides your IP from the relay servers you connect to. Requires Orbot (Android) or Tor Browser/Orbot (iOS).
Transport isolation: Enable under Network settings. Different contacts and group connections use separate TCP sessions β prevents traffic correlation by timing.
Private message routing: On by default since v6.0. Senders route messages through an intermediate relay instead of connecting directly to the recipient's server β the recipient's server does not see your IP address.
Local database encryption: Set a passphrase in Settings β Database passphrase. All contacts, groups, and messages are encrypted at rest.
Disappearing messages: Set per-conversation in Chat info β Disappearing messages. Requires recipient opt-in.
High-risk users (journalists, activists, whistleblowers, lawyers with privileged communications): SimpleX's no-identifier architecture means there is nothing to compel disclosure of. This is a meaningful upgrade over Signal (which at minimum knows your phone number and account creation date) and a categorical upgrade over Telegram.
Developers and technical users: The self-hosting path, CLI client, TypeScript SDK, bot framework, and AGPL license make it suitable for building private communication infrastructure. The #simplex-devs group is active for questions.
Privacy-default users: If you want a messaging app that works like WhatsApp in terms of ease but does not hand your contact graph and phone number to a corporation or court β SimpleX is now polished enough for everyday use, especially with the desktop client.
Enterprise / legal / medical: End-to-end encryption with no server-side contact graph and local-only storage means SimpleX can fit configurations where messages must not touch third-party servers. Self-hosting closes the loop entirely.
Every major messaging platform has a privacy policy claiming to protect users. Most of them are sincere. But policy and architecture are different things.
A privacy policy says what a company intends to do. Architecture determines what is possible. When a government serves a legal order, when a company is acquired, when servers are seized, or when an insider acts in bad faith β architecture is what holds.
Telegram's architecture held a contact graph and cloud messages. Its privacy policy did not prevent that data from becoming legally accessible. Signal's architecture holds phone numbers and minimal metadata β the minimum needed to function on the existing phone system. SimpleX's architecture holds nothing about users at the server level.
This is the same structural argument made about closed-source vs. local open-source AI: the question is not just what the provider promises, but what they could be compelled to do, and what the worst-case exposure is if that compulsion occurs.
For messaging, the 2024β2026 period demonstrated that compulsion is real, happens fast, and targets the identifiers that platforms hold. The answer is to not hold them in the first place.
Official resources:
App version details and roadmap items reflect SimpleX Chat v6.5.x as of June 29, 2026. The platform is under active development β check the GitHub changelog for the latest.