TokenGuard is a two-factor authentication token app that scans or accepts manually entered shared secrets and generates TOTP verification codes locally on your device. This policy explains what information TokenGuard processes, how that information is stored, and how data may move when you enable sync or export backups.
When you scan an otpauth QR code or manually enter a Base32 secret, TokenGuard processes the shared secret, issuer name, account name, code length, refresh period, and algorithm so it can generate TOTP verification codes locally.
When you enable Face ID, Touch ID, or device passcode unlock, TokenGuard uses system authentication capabilities to protect app contents. We do not read or store your raw biometric data; verification is handled by Apple system frameworks.
When you export a backup, TokenGuard creates an encrypted backup file protected by the password you choose. That password is not stored by TokenGuard and must be entered again when you restore the backup.
Shared secrets are stored in Apple Keychain by default. Account metadata, preferences, and local state are stored inside the app container protected by iOS file protection.
Only when you enable sync does TokenGuard synchronize encrypted token records through your private iCloud database for migration and recovery across devices signed in with the same Apple Account. Live verification codes themselves are not synced.
If you install the companion Apple Watch extension, TokenGuard may sync the token records needed between your iPhone and Apple Watch so you can view codes on your watch. This sync occurs only between your own paired devices.
We use your imported shared secrets and token parameters to calculate TOTP verification codes locally on your device.
When the app returns to the foreground, becomes inactive, or requires identity verification for backup export or import, TokenGuard uses system security features and privacy shielding to reduce unauthorized access.
Encrypted backup packages or cloud records are processed only when you explicitly export, import, sync, or restore data.
If you contact support by email, the device details, error descriptions, and screenshots you provide are used only to diagnose and resolve your issue.
You can disable iCloud sync inside the app. Once disabled, new data will no longer upload to your private iCloud database.
You can remove tokens inside the app or delete the app to remove locally stored data from the device. Remaining records tied to system accounts or iCloud may need to be cleaned up through Apple device or account settings.
To make a privacy-related request or ask a question about this policy, email dgb8901@gmail.com.
TokenGuard does not sell your personal information and does not use live verification codes as advertising data. If product functionality changes in the future, this page will be updated on tokenguard.sayai.us.