Your brand.
Our encryption stack.
Operate an end-to-end encrypted communications product under your own name without building the cryptography, the XMPP server ops, the eSIM partnerships, or the Android and iOS clients from scratch. We supply the stack; you supply the brand and the customer relationship.
NDAs available on request. Feasibility note within 2 business days.
Cryptography, XMPP server fleet, admin / reseller infrastructure, eSIM + payment partner integrations, and the security update pipeline.
The brand, the marketing, the user acquisition, the support front line, and (optionally) your own reseller channel inside your portal.
The whole stack, wearing your colors.
Every layer between your customers and the encryption — rebranded, hosted, and maintained for you.
Rebranded Android & iOS clients
An OMEMO XMPP Chat application compiled with your branding — app name, bundle ID, colors, wordmark, splash, notification icon. Distributed via your Play / App Store listing, F-Droid repo, or direct download.
Dedicated XMPP server
Managed ejabberd on your subdomain (e.g. chat.yourbrand.com). User JIDs, OMEMO encryption, MUC, MAM, calls, file transfer, TLS — all handled. Federated by default.
Branded admin portal
The same admin/reseller stack we run for OMEMO.global, at admin.yourbrand.com. Manage users, expirations, device re-activations, audit log, and (optional) reseller sub-accounts of your own.
Optional eSIM bundle
Pair the chat product with our global data eSIM under your brand. Same coverage (130+ countries), same partner pipeline — activation email and order page both wear your logo.
Managed update channel
We push security updates to ejabberd, libsignal, the XMPP chat app fork, and the admin portal on a coordinated schedule. You get release notes; users get OTA app updates.
Dedicated support contract
A named support engineer assigned to your account, priority response on incidents (4-hour P1, next-business-day P2), scheduled office hours for technical questions, and quarterly engineering check-ins. SLA tier scales with deployment size.
Three layers, one operator boundary.
Your customers hit your domain, your app, your support. Behind the scenes we run the encryption, the XMPP, the eSIM pipeline. The line between you and us is a contract, not a deployment.
Customer-facing
- yourbrand.com marketing site
- Branded Android and iOS apps
- Custom Play / F-Droid listing
- Support email + ticketing
Managed by us
- ejabberd at chat.yourbrand.com
- OMEMO + libsignal stack
- admin.yourbrand.com portal
- Roamgo / eSIM pipeline
- Security update channel
Built for organizations that need a sovereign comms channel.
Not every encrypted-app idea needs to be built from scratch. White-label fits when the brand and trust relationship already exist; the cryptography just needs a host.
Privacy-focused brands
Want a flagship encrypted-comms product but can't justify hiring a crypto engineering team.
Enterprise security teams
Roll out internal end-to-end encrypted comms for execs, M&A teams, or investigative groups.
Government & NGOs
Need a sovereign comms channel on a domain they control, not a US-based silo.
Journalism & human-rights orgs
Deploy secure-comms apps to staff and sources without each person learning a new protocol.
Hardware vendors
Ship pre-configured devices where the comms app is part of the device's identity, not a third-party add-on.
Privacy resellers leveling up
Outgrew the reseller portal and want full control of branding, JID domain, and user lifecycle.
Healthcare networks
A HIPAA-aligned, sovereign alternative to TigerConnect for clinical communications. Self-hosted JID domain, OMEMO end-to-end encryption, audit trail under your control — without the proprietary-cloud dependency.
Trading desks
Deal-room comms with a clean compliance trail. Encrypted at rest and in transit, retention controlled by your domain, no leaks to third-party messaging vendors. Drop-in for compliance-grade IB / hedge-fund chat.
Legal practices
Privileged-communications channel between counsel, clients, and co-counsel. Self-hosted JID domain keeps the discovery footprint inside the firm, not on a SaaS vendor's servers — and the encryption stays end-to-end through every device.
Three components, quoted per deal.
White-label engagements are too varied for a public sheet. The components combine to fit your shape — for enterprise on-prem, the model shifts to a flat annual license.
Integration fee
Covers the rebrand, app store submissions, domain + cert setup, admin portal customization, and first-90-day handover.
Platform fee
Tied to active-user count and feature scope. Scales with your usage; renegotiable on tier changes.
eSIM bundle
Optional. Same wholesale model as our reseller program — quoted by plan, region, and volume.
For enterprise deployments with a fixed user count and on-prem XMPP servers, the model shifts to a flat annual license + support agreement.
White label or reseller — which fits?
Both share the encryption stack and the eSIM pipeline. The differences are about brand and operational scope.
| Capability | Reseller | White Label |
|---|---|---|
| Customer billing under your brand | ✓ | ✓ |
| Custom retail pricing | ✓ | ✓ |
| Wholesale eSIM rates | ✓ | ✓ |
| Custom JID domain | — | ✓ |
| Rebranded Android & iOS clients | — | ✓ |
| Branded admin portal | — | ✓ |
| Dedicated XMPP server | — | ✓ |
| Dedicated support contract | — | ✓ |
| Onboarding time | Days | Weeks |
Ready to launch under your brand?
Email us with a sketch of the product you want to launch — target users, rough scale, app-store / on-prem preferences, and any jurisdictional or compliance requirements. We'll come back within two business days with a feasibility note and a quote range.
NDAs available on request.