Skip to content
TorrinPass

Privacy Policy

Last Updated: January 20, 2026

TorrinPass (“we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, and safeguard your information when you use our mobile application.

Our Privacy Commitment

Section titled “Our Privacy Commitment”

TorrinPass is built on a zero-knowledge architecture. This means:

  • We cannot access your passwords
  • We cannot read your encrypted data
  • We cannot reset your master password
  • Your privacy is protected by mathematics, not just policy

Information We Collect

Section titled “Information We Collect”

Information You Provide

Section titled “Information You Provide”
DataPurposeEncrypted?
Email addressAccount identification, communicationNo
Master passwordNever transmitted or stored by usN/A
Passwords & notesStored for your useYes (AES-256-GCM)
2FA secretsStored for your useYes (AES-256-GCM)

Information Collected Automatically

Section titled “Information Collected Automatically”
DataPurpose
Device typeApp compatibility
iOS versionApp compatibility
App versionSupport and updates
Crash reportsBug fixes (optional)
Anonymous usageProduct improvement (optional)

How We Use Your Information

Section titled “How We Use Your Information”

We use your information to:

  1. Provide the service — Store and sync your encrypted passwords
  2. Authenticate you — Verify your identity when you sign in
  3. Communicate — Send important account notifications
  4. Improve — Analyze anonymous usage to improve the app
  5. Support — Respond to your support requests

What We Cannot Access

Section titled “What We Cannot Access”

Due to our zero-knowledge architecture, we cannot:

  • View your passwords
  • Read your notes
  • See your 2FA secrets
  • Decrypt any of your data
  • Reset your master password

Your data is encrypted on your device before it reaches our servers.

Data Storage and Security

Section titled “Data Storage and Security”

Encryption

Section titled “Encryption”
  • Algorithm: AES-256-GCM
  • Key Derivation: PBKDF2 with 210,000 iterations
  • Location: Encrypted data stored on Firebase Firestore

Security Measures

Section titled “Security Measures”
  • End-to-end encryption
  • TLS 1.3 for data in transit
  • Regular security audits
  • No plaintext password storage

Data Sharing

Section titled “Data Sharing”

We do not sell your personal information.

We may share data only in these circumstances:

  1. Service Providers — Firebase (Google) for data storage and authentication
  2. Legal Requirements — If required by law (but we can only provide encrypted data)
  3. With Your Consent — If you explicitly authorize sharing

Your Rights

Section titled “Your Rights”

You have the right to:

  • Access — View your account information
  • Export — Download your data
  • Delete — Permanently delete your account and data
  • Opt-out — Disable anonymous analytics

To exercise these rights, contact us at privacy@torrinpass.com.

Data Retention

Section titled “Data Retention”
  • Active accounts: Data retained while account is active
  • Deleted accounts: Data permanently deleted within 30 days
  • Backups: Encrypted backups retained for 90 days, then deleted

Children’s Privacy

Section titled “Children’s Privacy”

TorrinPass is not intended for children under 13. We do not knowingly collect information from children under 13.

International Users

Section titled “International Users”

Your data may be processed in the United States. By using TorrinPass, you consent to this transfer.

Changes to This Policy

Section titled “Changes to This Policy”

We may update this Privacy Policy. We will notify you of significant changes via email or in-app notification.

Contact Us

Section titled “Contact Us”

For privacy-related questions:

Email: privacy@torrinpass.com

Summary

Section titled “Summary”
QuestionAnswer
Can you see my passwords?No
Do you sell my data?No
Can you reset my password?No
Where is my data stored?Firebase (encrypted)
Can I delete my data?Yes, permanently