Privacy Policy

At SecurePass Pro, your privacy is not just a priority—it's built into the foundation of our service. This privacy policy explains how we handle (or more accurately, don't handle) your data.

No Data Collection

SecurePass Pro does not collect, store, transmit, or have any access to:

• Passwords you generate
• Passphrases you create
• API keys, UUIDs, or other security tokens
• Your IP address or device information
• Any personally identifiable information (PII)
• Browser fingerprints or tracking identifiers

100% Client-Side Generation

Every password, passphrase, and security token is generated entirely in your browser using the Web Crypto API, a browser-native cryptographic interface designed for secure random number generation.

What this means for you:

• No passwords are sent over the internet to our servers (or anyone else's)
• No passwords are stored in databases or log files
• Even if someone intercepted your internet traffic, they would see nothing
• You can use SecurePass Pro completely offline once the page loads

No Tracking or Cookies

We do not use cookies to track your behavior, identify you, or monitor your password generation activity.

Analytics: We use Vercel Analytics, a privacy-friendly analytics service that collects only basic, anonymous page view data:

• What's collected: Page views, referrer sources, country-level geographic data, device type (mobile/desktop)
• What's NOT collected: IP addresses, user identifiers, individual browsing behavior, passwords or generated content
• Why we use it: To understand which features are most popular and improve the service

Local Storage (Optional)

SecurePass Pro may store the following data locally in your browser using localStorage:

• Dark mode preference: To remember your UI theme choice
• Password history (optional): If you choose to enable history, passwords are stored locally in your browser only—never on our servers

You can clear this data at any time by clearing your browser's localStorage or using your browser's "Clear browsing data" feature.

Third-Party Services

SecurePass Pro uses the following third-party services:

• Vercel (Hosting): Our website is hosted on Vercel. Vercel may collect standard server logs (IP addresses, request times) but does not have access to passwords or generated content.
• Vercel Analytics: As described above, privacy-friendly analytics with no personal data collection.

We do not share any data with third parties because we don't collect any data to share.

Transparency

SecurePass Pro is designed with full transparency in mind. You can verify our privacy claims through:

• All password generation happens client-side using the Web Crypto API
• No network requests are made during password generation (verify using browser DevTools)
• Clear documentation of how the Web Crypto API works

Security researchers, developers, and privacy advocates can inspect the application behavior using browser developer tools.

Your Rights and Control

Because we don't collect personal data, there's no data to access, modify, or delete. However, you have full control over:

• LocalStorage: Clear it anytime in your browser settings
• Password history: Delete individual entries or clear all history with one click
• Analytics: Use browser extensions (like uBlock Origin) to block Vercel Analytics if desired

Security Best Practices

While we take every precaution to ensure your privacy, we recommend:

• Using a trusted password manager to securely store generated passwords
• Never sharing passwords via unencrypted channels (email, SMS, etc.)
• Enabling two-factor authentication (2FA) on important accounts
• Regularly updating passwords for critical accounts

Changes to This Policy

If we make any changes to this privacy policy, we will update this page with the new "Last Updated" date. Because we don't collect user data, we have no way to notify users of changes—please check this page periodically.

Questions

For questions about this privacy policy, you can verify our privacy practices by reviewing our open-source implementation through your browser's developer tools and network monitoring.