diff --git a/PRIVACY.md b/PRIVACY.md
index 5abc128..9a4dfcc 100644
--- a/PRIVACY.md
+++ b/PRIVACY.md
@@ -1,49 +1,90 @@
-**Understand how your data is used**
+# Privacy
-The Matrix protocol is designed with your privacy and data sovereignty in mind. Because it is a decentralised, federated service with cryptographically-validated message integrity, there are a few important things to know before you use the Service.
+FluffyChat is available on Android, iOS and as a web version. Desktop versions for Windows, Linux and macOS may follow.
-This app can communicate with any matrix homeserver which supports the matrix specification by the homeserver. The user is free to choose the homeserver and has to accept the privacy policy of this homeserver before using it.
+## Matrix
+FluffyChat uses the Matrix protocol. This means that FluffyChat is just a client that can be connected to any compatible matrix server. The respective data protection agreement of the server selected by the user then applies.
-**Federation**
+For convenience, one or more servers are set as default that the FluffyChat developers consider trustworthy. The developers of FluffyChat do not guarantee their trustworthiness. Before the first communication, users are informed which server they are connecting to.
-Services using the Matrix protocol rely on Matrix homeservers which share user data with the wider ecosystem over federation.
+FluffyChat only communicates with the selected server and with sentry.io if enabled.
-* When you send messages or files in a room, a copy of the data is sent to all participants in the room. If these participants are registered on remote homeservers, your username, display name, messages and files may be replicated across each participating homeserver.
+More information is available at: https://matrix.org
-* We will forget your copy of your data upon your request. We will also forward your request onto federated homeservers. However - these homeservers are outside our span of control, so we cannot guarantee they will forget your data.
+## Sentry
+FluffyChat uses Sentry for crash reports if the user allows it.
-* Federated homeservers can be located anywhere in the world, and are subject to local laws and regulations.
+More information is available at: https://sentry.io
-**Bridging**
+## Database
+FluffyChat caches some data received from the server in a local database on the device of the user.
-Some Matrix rooms are bridged to third-party services, such as IRC networks, twitter or email. When a room has been bridged, your messages and media may be copied onto the bridged service.
+More information is available at: https://pub.dev/packages/moor
-* It may not be technically possible to support your management of your data once it has been copied onto a bridged service.
+## Encryption
+All communication of substantive content between Fluffychat and any server is done in secure way, using transport encryption to protect it.
-* Bridged services can be located anywhere in the world, and are subject to local laws and regulations.
+FluffyChat is able to use End-To-End-Encryption as a tech preview.
-**Integration Services (Bots and Widgets)**
+## App Permissions
-The homeserver the user is using may provide a range of integrations in the form of Widgets (web applications accessed as part of the Matrix Client webapp) and Bots (automated participants in rooms). Bots and Widgets have access to the messages and files in rooms in which they participate.
+The permissions are the same on Android and iOS but may differ in the name. This are the Android Permissions:
-**Forgetting your Data**
+#### Internet Access
+FluffyChat needs to have internet access to communicate with the Matrix Server.
-You can request that we forget your data if you deactivate your account. Each user in a Matrix conversation receives their own copy of all messages and files in that conversation (similar to email), so we ensure data is forgotten by ensuring that your data is not shared further and is not visible to future users. Once all users’ copies have been forgotten the messages and files will be deleted from the homeserver database. For full details, please see the [full privacy notice](https://matrix.org/legal/privacy-notice/ "https://matrix.org/legal/privacy-notice/").
+#### Vibrate
+FluffyChat uses vibration for local notifications. More informations about this are at the used package:
+https://pub.dev/packages/flutter_local_notifications
-If you remove (redact) a message, the message content will no longer be accessible to users. Redactions only remove message content, your display name and avatar - your username will still be visible. Federated homeservers and some matrix clients may not honour the redaction request.
+#### Record Audio
+FluffyChat can send voice messages in a chat and therefore needs to have the permission to record audio.
-**Legal Basis for Processing**
+#### Write External Storage
+The user is able to save received files and therefore app needs this permission.
-New Vector processes your data under Legitimate Interest. This means that we process your data only as necessary to deliver the Service, and in a manner that you understand and expect.
+#### Read External Storage
+The user is able to send files from the device's file system.
-The Legitimate Interest of our Service is the provision of decentralised, openly-federated and (optionally) end-to-end encrypted communication services. The processing of user data we undertake is necessary to provide the Service. The nature of the Service and its implementation results in some caveats concerning this processing, particularly in terms of GDPR Article 17 Right to Erasure (Right to be Forgotten). We believe these caveats are in line with the broader societal interests served by providing the Service. These caveats are discussed in detail in the full privacy notice, but the most important restriction is that your username will still be publicly associated with rooms in which you have participated even if you deactivate your account and ask us to forget your data.
+## Push Notifications
+FluffyChat uses the Firebase Cloud Messaging service for push notifications on Android and iOS. This takes place in the following steps:
+1. The matrix server sends the push notification to the FluffyChat Push Gateway
+2. The FluffyChat Push Gateway forwards the message in a different format to Firebase Cloud Messaging
+3. Firebase Cloud Messaging waits until the user's device is online again
+4. The device receives the push notification from Firebase Cloud Messaging and displays it as a notification
-In situations where the interests of the individual appear to be in conflict with the broader societal interests, we will seek to reconcile those differences in accordance with our policy.
+The source code of the push gateway can be viewed here:
+https://gitlab.com/famedly/services/famedly-push-gateway
-If any of the above are unacceptable to you, **please do not use the Service.**
+`event_id_only` is used as the format for the push notification. A typical push notification therefore only contains:
+- Event ID
+- Room ID
+- Unread Count
+- Information about the device that is to receive the message
-Please review the [full privacy notice](https://matrix.org/legal/privacy-notice/ "https://matrix.org/legal/privacy-notice/") and [code of conduct](https://matrix.org/legal/code-of-conduct/ "https://matrix.org/legal/code-of-conduct/") before using this Service.
+A typical push notification could look like this:
+```
+{
+ "notification": {
+ "event_id": "$3957tyerfgewrf384",
+ "room_id": "!slw48wfj34rtnrf:example.com",
+ "counts": {
+ "unread": 2,
+ "missed_calls": 1
+ },
+ "devices": [
+ {
+ "app_id": "chat.fluffy.fluffychat",
+ "pushkey": "V2h5IG9uIGVhcnRoIGRpZCB5b3UgZGVjb2RlIHRoaXM/",
+ "pushkey_ts": 12345678,
+ "data": {},
+ "tweaks": {
+ "sound": "bing"
+ }
+ }
+ ]
+ }
+}
+```
-Please review the [terms and conditions](https://matrix.org/legal/terms-and-conditions/ "https://matrix.org/legal/terms-and-conditions/") before using this Service.
-
-You must be at least 16 years old to use this Service.
+FluffyChat sets the `event_id_only` flag at the Matrix Server. This server is then responsible to send the correct data.