Local-first TOTP authenticator

Keep two-factor codes close to the device that creates them.

TOTP Auth is designed for iPhone and iPad users who want a focused authenticator with local code generation, QR-based migration, and privacy-conscious defaults.

Available on the App Store soon Read the privacy policy

TOTP Auth

Fast to spot, calm to use.

The bright blue icon keeps the app easy to recognize, while the experience stays focused on quick, private access to your verification codes.

Device-first

Designed so authenticator data stays on your device instead of being mirrored to a remote account.

Migration ready

Import standard QR data and Google Authenticator migration payloads without leaving the device.

Security controls

Biometric startup protection, clipboard timeout support, and privacy-focused handling for screen capture contexts.

Why it exists

Built for people who want a calm, direct authenticator.

No account ceremony, no cloud dashboard, and no marketing instrumentation in the core experience. The product focus is simple: store accounts locally and generate time-based one-time passwords reliably.

Generate codes locally

TOTP codes are designed to be generated on your iPhone or iPad without a cloud relay.

Import and export by QR

Standard otpauth:// data and Google Authenticator migration payloads can be handled locally through QR workflows.

Protect access with biometrics

Optional startup authentication can use Face ID, Touch ID, or another system-provided biometric method.

Keep secrets on device

Sensitive secret material is designed to stay on device, with no user account requirement and no server-side copy.

Respect clipboard hygiene

One-tap copy is paired with an automatic clipboard timeout design so copied codes do not linger longer than needed.

Focus on private defaults

The app is designed without in-app advertising, third-party analytics SDKs, or cross-app tracking mechanisms.

Privacy first

Read the exact policy text before the App Store launch.

Review how TOTP Auth approaches privacy, data handling, and on-device protection before you install it.

Open the privacy policy

No account sign-up is required to use the app.
No advertising identifiers or analytics SDKs are part of the app design.
Secrets and generated codes are designed to remain on device.
The full privacy policy is available on a dedicated page.