Ghost Auth
Privacy Policy — February 2026
Ghost Auth does not collect or transmit personal data to any Ghost Auth server. Data stays on your device unless you explicitly choose encrypted export, backup, or LAN sync.
Data Storage
All data — including authenticator secrets, PIN, and recovery codes — is encrypted and stored locally on your device. Ghost Auth has no servers, accounts, or cloud storage.
Network Access
Ghost Auth is offline-first and has no cloud connection. Network activity only occurs when you explicitly initiate device-to-device sync over your local network.
Analytics & Tracking
Ghost Auth does not include analytics, telemetry, crash reporting, or advertising.
Biometrics
If you enable biometric unlock, authentication is handled by your device's operating system. Ghost Auth does not access or store biometric data.
Backups
Backups are encrypted with a password you choose and saved locally. Ghost Auth does not upload backups anywhere.
Third Parties
Ghost Auth does not share data with third parties.
Open Source
Ghost Auth is open source. You can review the code on GitHub.
Contact
Questions? Open an issue on GitHub.