Privacy Policy

Thank you for using PwdHash. This Privacy Policy explains how we handle your information when you use our Android Application, Chrome Extension, or Website.

The Short Version: We do not collect, store, share, or transmit your personal data. PwdHash is a stateless, client-side tool. Your master password never leaves your device.

1. Information Collection and Use

We adhere to a strict "Zero Knowledge" policy:

• No Data Transmission: The app does not connect to the internet to send data to any server. All password generation logic happens locally on your device's processor.
• No Analytics: We do not use third-party analytics software to track your usage.
• No Account Required: You do not need to create an account or provide an email address to use PwdHash.

2. Chrome Extension Specifics

The PwdHash Chrome Extension requires specific permissions to function:

• Active Tab / Website Content: When you click the extension icon or trigger the generation, the extension reads the URL of the current tab. This is used solely to extract the domain name (e.g., "google.com") which acts as the cryptographic "salt" for your password.
• Local Processing: This URL data is processed instantly in your browser's memory and is never transmitted to us or any third party. It is discarded immediately after the password is generated.

3. Android App Specifics

• Master Password Storage: If you choose to save your master password, it is encrypted using the Android Keystore system and stored locally in EncryptedSharedPreferences. It is never uploaded to a cloud server.
• Biometric Data: The app uses the Android BiometricPrompt API to authenticate you. The app does not have access to your raw fingerprint or face data; it only receives a confirmation signal from the Android OS.

4. Data Sharing

Since we do not collect any data, we do not (and cannot) sell, trade, or transfer your information to outside parties.

5. Open Source Transparency

PwdHash is an open-source project. The complete source code is available for audit on GitHub. You can verify exactly how the application handles your data by inspecting the code.

View Source Code

6. Changes to This Policy

We may update our Privacy Policy from time to time. Thus, you are advised to review this page periodically for any changes.

7. Contact Us

If you have any questions or suggestions about this Privacy Policy, please contact us via the GitHub repository issue tracker.