Privacy Policy

ZeroAuth is an offline-first authenticator application designed to store, manage, and generate time-based one-time passcodes (TOTP) and passwords. The app operates strictly within your local device boundary.

When you utilize ZeroAuth, the application processes account labels, issuer names, TOTP cryptographic seeds, generated passcode sequences, app access lock configuration (PIN hashes), and local device configuration settings. This processing is transient and remains local to your device.

ZeroAuth does not collect, aggregate, or store your passwords, TOTP secrets, accounts, or biometric templates. We operate on a zero-telemetry framework: no analytics, no tracking pixels, and no crash reports are sent to our servers.

The app requests camera permission solely to scan QR codes for importing credentials. It requests biometric APIs (Face ID / Touch ID / Fingerprint) to authenticate vault access. Your biometric templates never leave the secure mobile operating system layer.

All data is stored inside your device secure storage sandbox, leveraging platform-level keychain encryption. For auto-fill features, credentials are shared locally with the browser auto-fill extension within the secure sandboxed runtime of your device.

You can export encrypted backups (AES-256) of your credentials. Once exported, you are solely responsible for the safety of these files. Optional Labs is not responsible for data disclosure resulting from cloud sync, backup transfers, or screenshots.

If you contact Optional Labs for support, we process only the email address, name, and details you share. This information is used strictly to respond, troubleshoot, and resolve your inquiry, and is kept for no longer than legally required.

We adhere to lawful data protection standards. Depending on your jurisdiction, you have the right to request access, correction, deletion, or withdrawal of consent regarding support data we hold. All on-device data remains completely under your control via app deletion or resetting.