Privacy Policy for TOTP Auth

Privacy Policy for TOTP Auth

Effective Date: 2026/03/28

TOTP Auth is a local-first time-based one-time password (“TOTP”) authenticator. This Privacy Policy explains how information is handled when you use the App on iPhone or iPad.

The App is designed to function without creating a user account and without relying on a cloud backend to generate authentication codes. The App is also designed so that authenticator data remains on your device. The App does not collect or automatically transmit your secrets, generated one-time passwords, or settings to us or to third parties. The App is not designed to initiate network communication as part of its core functionality. However, limited network activity may occur due to operating system or platform-level services, and certain information may be processed by the operating system or platform provider (Apple) according to their own privacy policies.

1. Information the App Processes

To provide its core functionality, the App may process the following categories of information locally on your device:
- Authenticator secrets and secret-related metadata, including items such as issuer name, account label, algorithm, code length, time interval, and migration/import data.
- Non-secret app settings and preferences, such as language selection, security preferences, biometric lock preference, and timeout settings.
- QR code contents that you choose to scan, import, export, or display, including standard otpauth:// URIs and Google Authenticator otpauth-migration:// payloads.
- One-time passwords generated locally from stored TOTP data and your device’s current time.
- Clipboard content when you intentionally use the one-tap copy feature.
- Camera input if you grant permission to scan QR codes.
- Biometric authentication results if you enable Face ID, Touch ID, or another system-provided biometric authentication method.

2. How the App Uses Information

The App uses the above information only to provide its intended features, including:
- storing and managing authenticator accounts on your device;
- generating TOTP codes locally;
- importing and exporting accounts through QR codes;
- protecting access to the App and sensitive data;
- applying your security and usability preferences, including timeout settings.

The App does not use your information for advertising, profiling, behavioral analytics, or cross-app tracking.

3. What the App Does Not Collect or Transmit

The App is designed not to collect or automatically send the following to us or to third parties:
- authenticator secrets;
- generated one-time passwords;
- scanned QR data;
- account labels or related metadata;
- app settings;
- advertising identifiers;
- analytics data;
- tracking data; or
- telemetry for marketing purposes.

The App does not include in-app advertising, third-party analytics SDKs, or cross-site / cross-app tracking mechanisms.

4. Local Storage

The App is designed so that data storage is handled locally on your device as follows:
- Secret keys and secret-related metadata are stored in the iOS/iPadOS Keychain using the accessibility class kSecAttrAccessibleWhenUnlockedThisDeviceOnly.
- Non-secret settings are stored locally using SwiftData.

Using kSecAttrAccessibleWhenUnlockedThisDeviceOnly is intended to restrict access to those sensitive items to times when the device is unlocked and to keep those items bound to that device rather than syncing them through cloud-based migration mechanisms.

Because the App does not maintain a server-side copy of your secrets, we generally cannot access, recover, or restore your authenticator data for you if your device is lost, replaced, erased, or otherwise becomes unavailable.

5. Security Measures

Security and privacy are the highest design priorities of the App. The App is designed to include protections such as the following:
- displayed one-time codes are intended to be masked during screen recording, screen capture-related events, external display/output, and app switcher previews, to the extent supported by iOS/iPadOS. These protections depend on platform capabilities and may not be guaranteed in all scenarios. Other applications may access clipboard contents subject to operating system policies. Clipboard contents may be accessible to other apps when you paste data. The App does not monitor or control how other apps use clipboard data.;
- optional startup authentication may be protected with system-provided biometric authentication;
- the App is designed not to initiate automatic outbound network communication; and
- the App is designed to avoid using Universal Clipboard to the extent possible under iOS/iPadOS.

6. Biometric Authentication

If you enable biometric protection, the App may use Face ID, Touch ID, or another system-provided biometric authentication method available on your device.

The App does not collect, receive, or store your biometric templates. Biometric matching is performed by the operating system. The App receives only the result needed to grant or deny access.

7. Clipboard Handling

If you use the one-tap copy feature, the App copies the current one-time password to the clipboard on your device.

The App is designed to support an automatic clipboard timeout. The default timeout is 30 seconds, and the timeout value may be configurable by you within the App.

The App is also designed to avoid Universal Clipboard syncing. However, as with clipboard use generally on iOS/iPadOS, copied content may remain subject to operating system behavior until it is cleared, overwritten, or expires. You should use clipboard-based features with appropriate caution.

8. QR Code Import and Export

The App supports local account import and export through QR codes, including both:
- standard otpauth:// data; and
- Google Authenticator otpauth-migration:// data.

QR code scanning, parsing, creation, and display are intended to occur locally on your device.

Please note that exported QR codes may contain highly sensitive account information. When you choose to display, transfer, or share an export QR code, you do so at your own direction and should protect it from unauthorized viewing, capture, or reuse.

9. Permissions

Depending on how you use the App, the App may request access to the following device features:
- Camera — solely for scanning QR codes for account import or migration.
- Biometric authentication — solely for protecting access to the App.

The App is not intended to request permissions unrelated to its core authentication and security functions.

10. Sharing and Disclosure

We do not sell, rent, or otherwise disclose your data through the App to third parties.

Information may leave your device only when you explicitly direct it to do so, for example when you:
- export account data as a QR code;
- display that QR code to another device;
- copy a code to the clipboard; or
- use operating system features that you intentionally invoke.

Because the App is designed so that we do not receive your authenticator secrets or generated codes, we generally do not have access to that information and therefore cannot disclose it on your behalf.

11. Data Retention and Deletion

Your data remains on your device until you delete it, remove it within the App, or erase/reset the device, subject to operating system behavior.

If you want sensitive data removed, you should delete the relevant accounts and settings from within the App before uninstalling it. Because secure storage components such as Keychain are managed by iOS/iPadOS, data behavior after app removal may depend on the operating system. Data stored with "ThisDeviceOnly" accessibility is not intended to be backed up or migrated to other devices. However, Keychain behavior may vary depending on system conditions.

12. International Data Transfers

We do not operate a backend service that receives your authenticator data from the App. Accordingly, the App is not intended to perform international transfers of your authenticator secrets, generated codes, or settings through our own systems.

13. Children’s Privacy

The App is a security utility and is not intended to collect personal information from children through a remote service. The App is not directed to children under the age of 13 (or the minimum age required by applicable law). Because the App does not operate a user account system or collect personal information from the App to our servers, we do not knowingly collect personal information from children through the App.

14. Third-Party Platforms and Operating System Services

This Privacy Policy applies to the App itself.

Apple, the App Store, iOS/iPadOS, and other platform-level services may process information independently under their own terms, technical controls, and privacy policies. This may include, for example, app distribution, device-level diagnostics, permission management, or security functions performed by the platform rather than by the App.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect product, security, legal, or operational changes. When we do, we will update the “Effective Date” above. The revised Privacy Policy will apply from that updated effective date.

16. Disclaimer

To the maximum extent permitted by applicable law, we disclaim liability to the fullest extent permitted by applicable law for any indirect, incidental, special, consequential, or punitive damages, including but not limited to loss of data, loss of access, or security breaches.
This Privacy Policy shall be governed by and construed in accordance with the laws of Japan. Any disputes shall be subject to the exclusive jurisdiction of the courts of Japan, unless otherwise required by applicable local law.