About Clikkin

A platform with a posture.

Clikkin is a privacy-first platform for building customizable, distributed social networks. The words below aren't slogans — they're architectural constraints. Every line of code either honors them or doesn't ship.

Private.

Personally identifiable information belongs to the member, not the platform. Clikkin collects the minimum data necessary to operate and keeps sensitive data on the member's device by default.

How it's enforced

All PII lives in a hardware-encrypted Secure Vault on the member's device — AES-256-GCM inside Apple's Secure Enclave or Android's StrongBox. Our servers never see plaintext. Spaces ask narrow questions of the Vault ("is this member 18+?") and receive a boolean — never the underlying data. Every space's private data is encrypted client-side under keys held exclusively in the space admins' own vaults. A full server compromise yields ciphertext, not content.

Transparent.

Members always know who has power over them, what data has been shared, and when someone accesses their information. There are no hidden actors.

How it's enforced

Every space publicly lists its admin team. When it changes, members are notified. Every query invocation — every time a space actually asks the vault a question — is logged to an on-device Consumer Badge Vault and surfaces as a notification the space cannot suppress. Moderation actions display the moderator's identity. The third parties we rely on are named, and where we extend trust, we say so.

Sovereign.

Members control their identity, their data, and their participation. Spaces control their own rules, their own encryption keys, and their own membership.

How it's enforced

Consent is explicit, granular, and revocable — a granted query can be revoked in one tap and the cached response is purged. Each space's encryption keys live on the space admins' devices; the platform cannot be compelled to decrypt what it has no keys to. Members can export everything — posts, media, badges, coin history — and leave. We do not create artificial switching costs.

How they interact

Transparency makes sovereignty verifiable. Sovereignty makes privacy durable. Privacy keeps data from existing on our servers in the first place. Each principle holds the others honest.

The seven primitives

How the principles become product.

Each primitive is one mechanism the principles reduce to. Learn them once and the whole platform is legible.

Spaces

Customizable social networks owned by individuals (persona spaces) or organizations (community spaces). Every member starts in Clikkin Space (#1). Spaces can be public or private, with features gated by subscription tier. Community spaces can customize theming, roles, feeds, post classes, and — at the Branded App tier — publish standalone iOS and Android apps in their own name.

Free

Pro

Pro Plus

Pro Max

Branded

Badges

Badges are the sole authorization primitive — every permission on Clikkin resolves to badge ownership. They are composable (base plate, border, banner, symbols) and serve a dual role: authorization tokens and visual identity / verifiable credentials. Badge families cover subscription, promotion, action, and system roles. Trust levels run New → Verified → Established → Trusted → Anchor.

Admin

Verified

Founding

Pro

Coins

All write actions consume coins; reads are free. Full-reserve model backed by U.S. Treasury bills, permanent peg at 1 USD = 1,000 coins. Monthly allotments reset each cycle; purchased coins persist. A 10% infrastructure burn provides mild deflationary pressure. The economy is the governor that prevents spam from being free and makes abuse expensive.

1 USD

1,000 coins

permanent peg

Secure Vault

The hardware-encrypted on-device store for identity, keys, wallet, and badges. Activated with biometrics + device attestation. Encryption is AES-256-GCM, keyed inside Apple's Secure Enclave or Android's StrongBox. The Vault answers queries; it does not surrender raw data. Metadata — face embeddings, admin keys, KYB records — never leaves the device.

Identity⌞

Keys⌞

Wallet⌞

Badges⌞

Clikkin Passport

A binary identity credential — verified or not. One-time verification via Didit (document scan + selfie + liveness). PII stored only on-device; the server holds a boolean flag plus HMACs. Two-year validity with lightweight selfie-only re-verification. Unlocks three free spaces, community creation, seller eligibility, and the daily 100-coin floor.

Is this member 18+?

→

true

Store

The marketplace for templates, blocks, badges, and customization assets. Organizations can also sell digital and physical goods — with Shopify merchandise integration available at Pro Max. Creators keep the majority of each sale; Clikkin takes a modest platform commission, and the standard 2% transaction fee applies to all cash transactions on tiers that have a cash wallet enabled.

Template

Block

Badge

Theme

Merch

Digital

Apps

Third-party mini-apps that run inside spaces — custom UIs for how members interact with posts and space content. Space admins choose which apps are installed. Pro Max+ spaces can also publish branded standalone iOS and Android apps, in the App Store and Play Store, under their own name. Branded App ships at $1,000/mo; "own developer account" at +$200/mo.

◈ Polls

◇ Events

◉ Shop

▲ Analytics

◐ AV

Keep reading

More thinking on the blog.

Architecture notes, policy drafts, release stories, and the occasional unvarnished lesson from building a platform in public.