One major goal of the AllNet project is, by design, to provide users with privacy in their chat communications. All interpersonal (non-broadcast) communications are encrypted using a key generated on the device itself. The secret part of the key is never shared or transmitted in the clear by AllNet.
By design, the content of all communications is hidden from all but the sender and intended receiver(s). No information, other than the fact that transmission is taking place and addresses (more generally, envelope information), is available to any other device.
The sender of a message is informed when that message has been acknowledged by the receiver's device. This can allow very limited tracking of when the receiver's device is on and reachable.
All key material and all chat records are stored unencrypted on the device (they are in your home folder's .allnet folder). Depending on the security provided by your device, they may be available in backups or to anyone who gains access to your device.
Devices respond to trace messages with a randomly-selected ID. A new trace ID is selected every time allnet is started or re-started. This mechanism allows for short-term tracking of devices, which is useful for checking connectivity, for debugging, and for gathering statistics.
If there are errors (bugs) in the design or implementation of this software, the AllNet security goals may not be accomplished. If this happens, others may have access to your confidential information, including the contents of chat messages and they keys used to generate and read encrypted chat messages.
Encryption is morally neutral, in that it can be put to good use by both moral and immoral people. Each user of AllNet is responsible for the use to which they put the software. The developers strongly prefer that AllNet only be used in ways that do not harm people .