TradesMen Messenger
Built for the Trades

Secure messaging built for tradespeople and construction teams.

TradesMen Messenger is a private, mobile-first messenger for tradespeople, crews, contractors, and construction companies. Coordinate the job site, share photos and voice notes, and run voice and video calls — without handing your phone number, your conversations, or your client list to a consumer chat app.

Coming to the App Store Coming to Google Play
End-to-end encrypted No personal phone numbers shared Verified profiles Audited admin access
Why TradesMen Messenger

Group chats, SMS, and consumer apps weren't built for the job site.

Crews end up juggling three group chats, a personal cell number that never stops ringing, and a paper trail nobody can find when something goes wrong. We built TradesMen Messenger so you can run jobs from your phone with the privacy, structure, and control your trade actually needs.

See what's included How we handle privacy
0 plaintext messages stored on the server
2 native apps — iPhone & Android
1:1 voice & video calls over WebRTC
7-day grace window before account deletion
Who it's for

Designed for the people on the job — and the people running the company.

If your day touches a job site, a quote, a sub, a supplier, or a service call, TradesMen Messenger is built for you.

Tradespeople & sole operators

Electricians, plumbers, HVAC, carpenters, masons, painters, roofers, mechanics, landscapers.

  • Talk to clients without giving out your personal cell.
  • Send photos of completed work with timestamps you can stand behind.
  • Share a contact card or short code at the counter — no email or phone exchange.
  • Voice notes for hands-free updates while you're on the tools.

Crews & foremen

Site leads, journeymen, apprentices, and labourers running a building or a block.

  • One group per site, per trade, or per phase — keep noise out of the right rooms.
  • Foreman-only sub-chats for safety incidents, no-shows, and change orders.
  • Pin daily call-outs and morning safety briefings so nobody misses them.
  • Push notifications that say "new message" — never a leaked snippet on the lock screen.

General contractors

GCs coordinating subs, suppliers, inspectors, and clients across multiple jobs.

  • Coordinate subs and scopes in dedicated conversations — kept separate from client comms.
  • Quick-call inspectors and suppliers without sharing your personal number.
  • Encrypted attachments for plans, RFIs, and progress photos.
  • Privacy-aware reporting if a contact crosses a line.

Construction companies

Owners, ops managers, dispatch, safety officers, and HR running a fleet of crews.

  • Standardize how the company communicates without forcing personal accounts.
  • SuperAdmin tools for safety reports, account exports, and incident response.
  • Audit logs on sensitive actions — bans, content reveals, legal updates.
  • Retention policies you control, mapped to your industry's rules.

Trades we're built for

Electrical
Plumbing
HVAC & refrigeration
Carpentry & framing
Masonry & concrete
Drywall & finishing
Painting
Roofing
Insulation
Flooring
Glazing
Welding & ironwork
Heavy equipment
Landscaping
Site supervision
General contracting
How it works

Up and running in four steps.

No web sign-up. Install the app on your phone, verify, and add the people you actually want to talk to — no public directory, no email lookups.

Install the native app

Get TradesMen Messenger on iOS or Android. Both apps are signed, biometric-locked, and encrypted at rest with your platform's secure enclave.

Verify your account

Confirm your email and (optionally) your phone. We never expose either to other users — they're only used to keep your account recoverable.

Add contacts privately

Trade a contact card in person, scan a QR, or share a single-use signed invite link. There's no email or phone search and no public directory.

Run the job

Send messages, photos, files, and voice notes. Hop on encrypted voice or video calls. Set retention. Report abuse without giving up your privacy.

Capabilities

Everything a working trade needs — and nothing it doesn't.

Modern messaging features built around a "the server cannot read this" foundation.

Private 1:1 & group chats

End-to-end encrypted text, media, voice notes, reactions, edits, and deletes. Per-site, per-trade, or per-phase groups with admin roles and member-aware key handling.

Privacy-first contact adding

QR scan in person, short rotating codes, signed invite links — never email or phone lookups. Contact-invite tokens are HMAC'd; the server never stores the raw value.

Encrypted media at scale

Photos, video, files, and voice notes are encrypted on your device with a per-file content key, then uploaded as opaque ciphertext. Only your recipients can decrypt.

Voice & video calls

1:1 voice and video over WebRTC with DTLS-SRTP secured media. Peer-to-peer where possible, relayed via our coturn STUN/TURN when networks block it.

Privacy-safe push

"New message" pushes that never leak the sender, recipient, or content. Lock-screen previews are blank by default — your phone won't betray a private conversation.

Admin safety tools

Reports, moderation, and audited reveal flows. SuperAdmin operations are gated by role, IP allowlist, 2FA, and CSRF — and every sensitive action is logged.

Device management

See every device on your account, when it was last seen, and revoke access from inside the app. Each device has its own identity and signed pre-keys.

Account portability

Request a portable export of your account data, or delete your account from inside the app. Deletions are honored on a 7-day grace window.

Retention you control

Configurable retention policies per data class, mapped to your industry's compliance needs. Workers age data out automatically — nothing sits forever.

What's different

A messenger built for trades, not for advertising.

Compare the experience side by side. We made the trade-offs that consumer chat apps can't make because they don't run on your job site.

TradesMen Messenger

Built for tradespeople, crews, and companies.

  • End-to-end encryption with private keys on device.
  • Add contacts via QR, code, or signed link — not email or phone.
  • Privacy-safe push that never leaks sender or content.
  • Admin tools, audit logs, retention controls.
  • Native iOS and Android — no web client to phish.
  • Owner-operated by Pimentel Services Ltd.

Generic chat apps

Designed for everyone. Owned by ad companies.

  • Discoverable by phone number — your personal cell becomes your work line.
  • Push payloads can leak sender and snippet on the lock screen.
  • Metadata mined to inform ads or profile your contacts.
  • Unstructured groups; no admin or audit story.
  • Web clients add a phishing surface you don't control.
  • No retention controls aligned to construction or contracting.
Privacy & trust

Privacy isn't a setting — it's the architecture.

We engineered TradesMen Messenger so that the operator (us) cannot read your private content. The server is designed to hold only what's needed to deliver an encrypted message to the right device.

Server stores ciphertext only

Messages, attachments, and call payloads are encrypted on your device. The server stores opaque ciphertext with envelope headers — never plaintext bodies, never plaintext media.

Private keys remain on device

Identity and signing keys live in iOS Keychain or Android Keystore, protected by the device's secure enclave and your biometrics. We can't impersonate you, and we can't read your data.

Privacy-aware reporting

You choose what to share. Reports include only the metadata you opt into. Admin reveal flows require a written reason and are written to immutable audit logs.

Audited admin access

Every sensitive admin action — bans, reveals, exports, legal updates — is logged with the actor, IP, reason, and timestamp. SuperAdmin only, gated by 2FA and IP allowlist.

Honest about where we are

The current native builds ship with a placeholder crypto module that's gated against release builds. Public app-store releases require a vetted Signal/MLS-compatible crypto module before they ship. The backend is already designed for ciphertext-only storage today. See /security for the full picture.

Get the apps

Native iOS and Android, built for the job.

No web client. No browser session to hijack. Each device has its own keys, secured by your platform's biometrics.

iOS

Native Swift / SwiftUI for iPhone and iPad. iOS Keychain storage, Face ID / Touch ID lock, encrypted at rest, and call integration via CallKit-aware push payloads.

  • iPhone & iPad universal app
  • Face ID / Touch ID app lock
  • Privacy-safe push
  • Per-device key bundles
Public link not configured yet

Android

Native Kotlin / Jetpack Compose. Android Keystore-backed storage, biometric lock, encrypted at rest, with FCM push that never leaks message content.

  • Phone & tablet
  • BiometricPrompt app lock
  • Privacy-safe FCM push
  • Per-device key bundles
Public link not configured yet
FAQ

Common questions, straight answers.

Is TradesMen Messenger free?

The personal app on iOS and Android is free to install and use for individuals and small crews. Company-tier features — SuperAdmin tooling, audit logs, retention controls, and onboarding for fleets of crews — are paid. Pricing for the company tier is handled directly with our team; email support for details.

How is this different from WhatsApp, iMessage, or SMS?

Three things. First, you don't share your phone number with anyone you don't already know — contacts are added via QR, short code, or signed link. Second, our server is engineered to never store plaintext, plaintext media, or call audio. Third, there's an admin layer with audit logs, retention, reports, and moderation built around how trades actually run a job — generic apps don't have that.

Do I need to give you my phone number?

You can sign up with email only. Phone verification is optional and is used purely for account recovery — it's never exposed to other users and there is no phone-number search or public directory.

What does "end-to-end encrypted" actually mean here?

Your private keys live only on your device, protected by the device's secure enclave and your biometrics. Messages, media, and call payloads are encrypted on your device before they hit the network. The server only sees ciphertext with envelope headers needed for delivery. We've designed the entire backend around that invariant — and you can read more on /security, including an honest note about where the production-grade crypto module is on the roadmap.

Can my company adopt this for a whole crew or office?

Yes. The SuperAdmin console gives owners and ops managers user management, conversation visibility into reported content (with audit), retention policy controls, app-version tracking, and a privacy-aware report queue. Pair it with company-issued devices for a tidy rollout. Get in touch to plan an onboarding.

What happens if I lose my phone?

Each device has its own identity. From your other device or after re-installing on a replacement, you can revoke the lost device — its keys can no longer decrypt new messages. If you only have one device and lose it, you can recover account access via email/phone verification, register the new device, and continue. Past messages that were stored on the lost device aren't recoverable from the server because the server never had the keys.

Where is data hosted?

Operated by Pimentel Services Ltd. Production runs on managed PostgreSQL and Redis with encrypted storage, behind TLS. Hosting region and data-residency details are part of the company-tier onboarding and are listed in our DPA. Email privacy for specifics.

How do I report abuse or a safety issue?

From inside the app you can report a user or a message. You choose what to include. Our SuperAdmin reveal flow requires a written reason and is logged in admin_audit_logs — content is not viewed casually. For security issues, email security@example.com.

How do I delete my account?

From inside the app: Settings → Account → Delete account. We require your password to confirm. The request enters a 7-day grace window during which you can cancel; after that, your account is anonymized and your data is removed in line with our retention policies. See /data-deletion for details.

In practice

A day on a job, run from your phone.

Concrete patterns we see crews adopt in the first week. Nothing ground-breaking on its own — but together they're the difference between "we use a chat app" and "we run the job from our chat app."

Morning brief, pinned

Foreman pins the day's call-out (today's pour, who's on safety, when the inspector lands). Everyone reads it on the lock-screen-blank "new message" push and confirms with a reaction. No one needs to go fishing through yesterday's chat to find it.

Photo timestamps that hold up

Send a photo of completed work and the timestamp lives inside the encrypted thread — not on a public cloud, not in a screenshot folder. If the dispute happens months later, the chain of custody is the conversation itself.

One quick voice note instead of three texts

"Conduit's pulled, leaving site, see you at the next." Forty seconds, hands-free, no typing on the tools, ends in everyone's pocket without anyone reaching for a keyboard.

Adding a sub at the counter

Sub shows up at the supply house. You hand them the QR from your contact card; they scan it; you both see the request preview before either of you accepts. No phone number traded, no card-photographing-card.

Encrypted call to the inspector

Tap call from inside the contact card. WebRTC + DTLS-SRTP under the hood; on a job-site Wi‑Fi that blocks everything, our coturn relays the ciphertext. Either way, no one needs your personal cell number.

End-of-day, retention takes care of itself

The thread ages out per your retention policy — no manual cleanup. The audit trail you actually need lives in the conversation itself; the noise rolls off without anyone having to remember.

About

Built and operated by Pimentel Services Ltd.

Owner-operated, single accountable contact, no investors expecting an ad pivot. The architecture, the legal contacts, and the operating posture are all set up so the company that runs the service can't quietly turn into the company that reads your messages.

Single operator

One legal entity is responsible for the service end-to-end. Privacy questions, security disclosures, billing, and operational decisions all route to the same accountable team — not to a contractor maze.

Funded by the company tier

Personal use is free. The platform's paid revenue comes from the company tier — SuperAdmin tools, audit logs, retention controls, onboarding for fleets. No advertising model, no data resale.

Owner-controlled roadmap

Feature work is driven by what tradespeople, foremen, and ops managers actually need — not by a quarterly engagement target. Items in progress are listed openly on /features and /status.

Transparent on gaps

Where we have work to do — production-grade E2EE crypto module, certifications, multi-party calling — we say so on the marketing pages. /security calls it out explicitly.

Audited admin discipline

Every sensitive operator action — bans, reveals, exports, legal updates — writes to admin_audit_logs with the actor, IP, reason, and timestamp. SuperAdmin only, IP-allowlisted, MFA-required.

Reachable, not ticketed

Real humans on every inbox: support, privacy, security. We answer them, not autoresponders.

Built for the Trades. Designed for private communication.

Install the app, verify your account, add a few people the right way, and start running the job from your phone. We'll never sell your data, never ask you to set up a web account, and never put your conversations behind an ad model.

Browse features Read about security

Questions? Email support@example.com. Security disclosures: security@example.com.