Privacy Policy

Our Commitment to Privacy

At Authium, we believe your security data should remain private. Our zero-knowledge architecture means we never have access to your decrypted vault contents. This policy explains what limited data we collect and how we use it.

Data We Collect

• Account information: email address and display name
• Encrypted vault data (we cannot decrypt this)
• Usage analytics: feature usage patterns to improve the product
• Device information: operating system and app version for support

Zero-Knowledge Architecture

Your vault is encrypted using AES-256 encryption with keys derived from your master password. The encryption happens locally on your device before any data is transmitted. We never receive your master password or the keys to decrypt your vault.

How We Use Your Data

• Provide and maintain the Authium service
• Sync your encrypted vault across devices
• Send important account and security notifications
• Improve our product based on aggregate usage patterns
• Provide customer support

Data Retention

We retain your account data and encrypted vault for as long as your account is active. When you delete your account, we remove all associated data within 30 days. Some anonymized usage data may be retained for analytics purposes.

Your Rights

You have the right to:

• Access your personal data
• Export your vault data
• Delete your account and all associated data
• Opt out of non-essential communications

Contact Us

If you have questions about this privacy policy or your data, please contact us at privacy@authium.app.