Privacy Policy

 

Privacy Policy for SecureKey Storage

Effective Date: April 9, 2026

Introduction

Welcome to SecureKey Storage ("we," "us," or "our"). We are committed to protecting your privacy and securing your most sensitive data.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application (the "Application") and related services (the "Service").

Our Application is built on a Zero-Knowledge architecture. This means that we do not have possession of the master password, recovery phrases, or cryptographic keys required to decrypt your data stored within the Application. Consequently, we cannot decrypt or access the contents of your secure vault.

1. Information We Collect

Because of our Zero-Knowledge design, the information we collect is extremely limited. We categorize information into two distinct types:

A. Information We Do Not and Cannot Collect (Your Vault Content)

We have no access to the data you store inside your SecureKey Storage vault. This includes, but is not limited to:

  • Cryptographic keys

  • Passwords and credentials

  • API keys

  • Digital certificates

  • Secure notes

  • Recovery phrases (mnemonic seeds)

All this data is encrypted on your device before being saved, using the highest industry standards (e.g., AES-256). The decryption key is derived solely from your master password or biometric authentication, which remains exclusively under your control.

B. Information We May Collect (Technical and Usage Data)

We may collect limited information that cannot be used to identify you personally but is necessary to maintain and improve the Service:

  • Application Logs: Anonymized logs related to Application performance, such as error or crash reports. These help us diagnose and fix bugs.

  • Device Information: Non-personally identifiable information about your device, such as the operating system version, app version, and device type.

  • Usage Statistics: Aggregated, anonymized data on how the Application is used (e.g., number of keys created, features utilized) to help us understand user needs.

C. Information You Provide Voluntarily

We only collect personally identifiable information when you choose to provide it to us, such as:

  • Customer Support Communications: If you contact us for support, we may collect your email address and any other information you include in your message to resolve your issue.

2. How We Use Your Information

We use the limited information we collect for the following purposes:

  • To provide, maintain, and improve the Application and Service.

  • To monitor and analyze trends and usage of the Service.

  • To detect, prevent, and address technical issues and bugs.

  • To respond to your support requests or inquiries.

3. Disclosure of Your Information

We will never sell, rent, or lease your personal information or vault data to third parties.

We may disclose anonymized technical data or communications in limited circumstances:

  • With Your Consent: We may share information with your explicit consent or direction.

  • Legal Requirements: If required by law, subpoena, or court order. However, since we do not possess your encryption keys, we cannot comply with any request to provide your decrypted vault content.

  • Business Transfers: If we are involved in a merger, acquisition, or sale of all or a portion of our assets, you will be notified via the Application or our website regarding any change in ownership or use of your information.

4. Third-Party Services

The Application may interact with certain third-party services to enhance functionality, such as:

  • Payment Processors: If you purchase a premium version of the Application, payment is handled directly by the App Store or Google Play Store. We do not receive or store your credit card details.

  • Analytics Providers: We may use anonymized third-party analytics tools to understand app usage. These services are bound by confidentiality agreements and do not receive any sensitive data from your vault.

5. Security of Your Information

We prioritize the security of your data. The core of SecureKey Storage is designed so that you are the only one who can access your vault.

  • End-to-End Encryption: Your data is encrypted and decrypted locally on your device. It never leaves your device in an unencrypted (plaintext) state.

  • Hardware Integration: We leverage device-level hardware security features (like Trusted Platform Modules (TPM) on computers or Secure Enclave/Keystore on mobile devices) to provide an extra layer of protection for encryption keys.

  • User Responsibility: You are responsible for creating a strong master password or keeping your recovery phrase secure. If you lose these credentials, we cannot recover your data for you.

6. Data Retention

We retain anonymized technical logs and usage statistics only as long as necessary for business purposes. Support communications are retained to ensure continuity of service, but you may request their deletion at any time.

Because vault data is stored on your device (and optionally synced to your private cloud storage), you control the retention of your encrypted data. Deleting the Application will generally delete the local encrypted database.

7. Children’s Privacy

Our Service is not directed at children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete that information.

8. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy within the Application. We will update the "Effective Date" at the top of this policy. You are advised to review this Privacy Policy periodically for any changes.

9. Your Rights

Depending on your location, you may have rights under data protection laws, such as:

  • The right to access the personal data we hold about you.

  • The right to correct or update inaccurate personal data.

  • The right to request deletion of your personal data.

To exercise these rights regarding the limited technical information we may hold, please contact us.

10. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us at:

TafunaDev Email: asavesuparman23@gmail.com

Comments