[pjmlp]

Yeah right.

http://www.theverge.com/2016/9/21/12994362/allo-privacy-mess...

"Allo messages will still be encrypted between the device and Google servers, and stored on servers using encryption that leaves the messages accessible to Google’s algorithms."

[....]

"The decision will also have significant consequences for law enforcement access to Allo messages. By default, Allo messages will now be accessible to lawful warrant requests, the same as message data in Gmail and Hangouts and location data collected by Android. "

[pyre]

> The version of Allo rolling out today will store all non-incognito messages by default — a clear change from Google’s earlier statements that the app would only store messages transiently and in non-identifiable form. The records will now persist until the user actively deletes them, giving Google default access to a full history of conversations in the app. Users can also avoid the logging by using Allo’s Incognito Mode, which is still fully end-to-end encrypted and unchanged from the initial announcement.

> Like Hangouts and Gmail, Allo messages will still be encrypted between the device and Google servers, and stored on servers using encryption that leaves the messages accessible to Google’s algorithms.

Translation:

- Incognito messages will not be logged, and will be encrypted end-to-end.

- Non-incognito messages will transit over SSL, and be stored on Google's servers in an encrypted form that they will have access to (presumably this "encryption" is to prevent hackers gaining a DB dump from getting everything in plaintext).

- Non-incognito messages will be logged indefinitely, unless a user explicitly deletes them. (This is a change from what was previously announced at Google I/O)

Correct me if I'm missing something.

[losvedir]

> all non-incognito messages