Privacy Policy

Last updated: June 2026

Privacy First

KeyLockr is committed to protecting your privacy. We use end-to-end encryption (E2EE) to ensure that only you can access your data. We cannot read or decrypt your passwords, notes, or even item metadata such as titles, website URLs, and 2FA labels — these are encrypted on your device with your Account Key.

Zero-Knowledge Architecture

KeyLockr operates on a zero-knowledge architecture. Your data is encrypted on your device before being sent to our servers. We only store encrypted data that we cannot decrypt. Unencrypted encryption keys never reach our servers; when syncing devices or sharing files requires key delivery, we only relay or store encrypted key envelopes created by your devices, which only authorized devices or recipients can open.

Data We Collect

  • Email address or phone number (for account registration)
  • Public encryption keys (for E2EE handshake)
  • Device information (for push notifications)
  • Encrypted data (which we cannot decrypt)

Data We Never Collect

  • Your master password or unencrypted encryption keys
  • Your decrypted passwords, notes, or metadata such as titles, URLs, and 2FA labels
  • Your location data
  • Any data for advertising purposes

SMS Communications

We send transactional SMS messages (verification codes, security alerts) only when you provide your phone number and consent during registration. We do not send marketing messages. Standard message and data rates may apply. Reply STOP to opt out. See our SMS Terms of Service.

Contact

For privacy-related questions, please contact us:

infosafex.cloud