Privacy Policy

Effective Date: January 1, 2026

1. No Data Collection

The passwords generated by this tool are created using the window.crypto.getRandomValues() API. This process happens entirely within your device's local memory. We do not store, log, or transmit any generated passwords.

2. Client-Side Processing

All password generation occurs in your browser. Your data never leaves your device. This means:

• No servers involved in password creation
• No database of user information
• No tracking of generated passwords
• No third-party access to your keys
• No way for us to see what you generate

3. Information We Do Not Collect

We do not collect:

• Your name, email address, or phone number
• Your IP address (anonymized in analytics)
• Generated passwords
• Browser history or personal data
• Login credentials or account information

4. Cookies and Analytics

We use minimal, industry-standard cookies to understand site traffic and improve user experience. These cookies do not contain any personally identifiable information and cannot be linked to passwords you generate.

Cookies may be used for:

• Anonymous traffic analysis (Google Analytics)
• Basic site functionality
• Remembering user preferences

You can disable cookies in your browser settings, but this may affect some non-essential features.

5. Third-Party Services

We use the following third-party services:

• Lucide Icons: For icon display (no data collected)
• Buy Me a Coffee: Optional donation widget
• GitHub Pages: For hosting (static content only)
• Cloudflare: CDN and DNS services

These services have their own privacy policies and may use cookies. We do not share any user data with them.

6. Data Security

Since we operate on a zero-knowledge architecture, there is no database of users or passwords for hackers to target. Your security is built into our design. All connections to our site use HTTPS encryption.

7. Zero-Knowledge Architecture Explained

Our zero-knowledge architecture means that we literally cannot see your passwords even if we wanted to. Here's how it works:

1. You visit PassGen Pro in your browser
2. The JavaScript code downloads to your device
3. Your browser generates random numbers using the Web Crypto API
4. The password is created using these random numbers
5. The result appears only on your screen
6. We never see, store, or transmit anything

8. Why This Matters

• No data breaches possible on our servers
• No government subpoenas can access your passwords
• No insider threats from employees
• No tracking of what you generate
• Complete anonymity

9. Your Rights Under GDPR and CCPA

Since we don't collect personal data, compliance is built-in:

Your Rights Under GDPR (European Union)

• Right to Access: We have no data to provide
• Right to Rectification: Nothing to correct
• Right to Erasure: Nothing to delete
• Right to Restrict Processing: We don't process personal data
• Right to Data Portability: No data to transfer
• Right to Object: Use an ad-blocker if desired

Your Rights Under CCPA (California)

• Right to Know: We collect no personal information
• Right to Delete: Nothing to delete
• Right to Opt-Out: No sale of personal information
• Right to Non-Discrimination: All users treated equally

10. Children's Privacy

PassGen Pro does not knowingly collect any information from children under 13. If you believe a child has provided personal information, please contact us immediately and we will take appropriate action.

11. Changes to This Policy

We may update this privacy policy occasionally to reflect changes in our practices or legal requirements. The updated version will be posted here with a revised date. Your continued use of PassGen Pro after changes constitutes acceptance of the updated policy.

12. Contact Us

If you have questions about this privacy policy or our data practices, please contact us:

• Email: privacy@passgen.pro
• Response time: 24-48 hours

By using PassGen Pro, you acknowledge that you have read and understood this privacy policy.