Data Policy

Comprehensive information about how we handle, process, and protect your data.

Last Updated: November 2025

Data Collection and Processing

Important: Oculock™ is a local storage application. We do not collect, transmit, or store your vault data on external servers. All your vault data is stored locally on your device using AES-256 encryption. This Data Policy provides detailed information about how Oculock™ handles, processes, and protects your data.

Types of Data We Process

Vault Data (Stored Locally Only)

The following types of information are stored locally on your device when you add them to your vault:

  • Passwords: Passwords you choose to store in your vault
  • Usernames: Usernames associated with your accounts
  • URLs: Website addresses and URLs
  • Notes: Personal notes and additional information
  • Credit Card Numbers: Payment information you choose to store
  • Contact Information: Phone numbers, addresses, and other contact details
  • Other Sensitive Data: Any other information you choose to store in your vault

All vault data is encrypted using AES-256 encryption and stored locally on your device. None of this data is transmitted to our servers.

Analytics Data (Stored Locally, With Your Consent)

If you opt-in to analytics (which you can enable or disable in settings), the following anonymous usage data is collected and stored locally on your device:

  • App Events: Feature usage events (vault operations, item operations, sync operations, screen views, etc.)
  • Feature Interactions: Which features you use and how often
  • Session Duration: How long you use the app
  • Error Events: Errors that occur during app usage

This analytics data is stored locally on your device and is only used to improve the app. You can opt-out at any time in the app settings. Analytics data is never transmitted to external servers.

Crash Reports (Stored Locally Only)

If the app crashes, crash reports are generated and stored locally on your device. These reports may include:

  • Device Information: Device model, operating system version, hardware specifications
  • System Information: OS version, build number, system configuration
  • Memory Information: Memory usage at time of crash
  • Stack Traces: Technical error information for debugging
  • Performance Metrics: App performance data leading up to the crash
  • User Actions: Recent actions taken before the crash (for context)

Crash reports are stored locally on your device and are never automatically transmitted. You can view and optionally send crash reports through the app's crash reporting interface if you choose to help us improve the app.

Biometric Data

  • Touch ID/Face ID: Biometric authentication data is stored securely in your device's Keychain (iOS) or equivalent secure storage. This data never leaves your device and is managed by the operating system.
  • Authentication Results: Success/failure status of biometric authentication attempts are processed locally on your device only.

Payment Information

Payment information for subscriptions is handled entirely by Apple (App Store) or Google (Google Play Store). We do not collect, process, or store any payment information. All payment data is managed by Apple or Google in accordance with their respective privacy policies.

Data Processing Purposes

Data Processing Flow (Local Processing Only)

1

Data Entry

You add data to your vault - passwords, usernames, notes, and other sensitive information

2

Local Encryption

All sensitive data is immediately encrypted using AES-256 encryption on your device

3

Local Storage

Encrypted data is stored locally on your device - it never leaves your device

4

Local Processing

Data is decrypted and processed locally on your device when you access it

5

Local Access Control

Access to your data is controlled by your master password and biometric authentication, all processed locally

Core Service Functions (Local Processing)

  • Password Management: Storing, organizing, and retrieving your passwords securely - all processed locally on your device
  • Local Network Sync: Syncing your vault data across devices on your local network using peer-to-peer connections (no external servers)
  • Biometric Authentication: Providing secure access to your vault using device biometrics - processed entirely on your device
  • Local Backup: Creating encrypted backups stored on your device or exported to a location you choose

Premium Service Functions (Local Processing)

  • Snap Vault: Temporary sharing of vault items between devices on your local network - transmitted directly between devices, not through our servers
  • Export Functionality: Exporting your vault data in various formats to a location you choose
  • Advanced Features: Additional vault management and security features - all processed locally

Note: All processing occurs locally on your device. We do not operate servers that process or store your vault data.

Data Security Measures

Encryption Standards

  • AES-256 Encryption: Military-grade encryption for all sensitive data
  • End-to-End Encryption: Data encrypted before transmission
  • Key Management: Secure key generation and storage
  • Perfect Forward Secrecy: Unique encryption keys for each session

Access Controls

  • Multi-Factor Authentication: Multiple layers of identity verification
  • Role-Based Access: Access permissions based on user roles
  • Audit Logging: Comprehensive logging of all data access
  • Session Management: Secure session handling and timeout

Local Device Security

  • Device-Level Encryption: All vault data is encrypted using AES-256 before storage on your device
  • Secure Key Storage: Encryption keys are stored securely in your device's Keychain (iOS) or equivalent secure storage
  • Biometric Protection: Access to your vault is protected by device-level biometric authentication
  • No Network Transmission: Your vault data never leaves your device unless you explicitly export it

Local Network Security (When Using Sync Features)

  • Encrypted Connections: Local network sync uses encrypted peer-to-peer connections
  • No External Servers: Synchronization occurs directly between your devices on your local network
  • Secure Protocols: Industry-standard encryption protocols for local network communication

Data Retention and Deletion

Retention Periods (Local Storage)

  • Vault Data: Retained on your device until you delete it or uninstall the app
  • Analytics Data: Stored locally on your device. You can clear this data at any time in the app settings
  • Crash Reports: Stored locally on your device. You can view and delete crash reports at any time through the app's crash reporting interface
  • Transaction Records: Payment transactions are handled by Apple or Google. We do not retain transaction records.

Data Deletion

  • User-Initiated Deletion: Immediate deletion of vault items when you delete them in the app
  • Vault Deletion: Complete deletion of vault data when you delete a vault in the app
  • App Uninstallation: All local data is deleted when you uninstall the app (unless you've exported backups)
  • Analytics Data: You can clear analytics data at any time in the app settings
  • Crash Reports: You can delete individual crash reports or all crash reports through the app interface

Note: Since all data is stored locally on your device, you have complete control over data retention and deletion. There are no external servers where your data is stored.

Data Sharing and Third Parties

No Data Sales or Sharing

We do not sell, rent, trade, collect, or transmit your vault data to any external servers or third parties. All your vault data remains on your device.

No External Servers: We do not operate any servers that store your vault data. Your data never leaves your device unless you explicitly export it.

Data Transmission (User-Initiated Only)

The only circumstances where data may leave your device are:

  • Local Network Sync: When you use local network sync features, data is transmitted directly between your devices on your local network. This communication is encrypted and does not go through our servers.
  • Manual Export: When you explicitly export your vault data, it is saved to a location you choose on your device.
  • Crash Reports (Optional): If you choose to send a crash report to help us improve the app, you can review it first and send it manually through the app's interface.
  • App Store Services: Standard App Store functionality (purchases, subscriptions) handled by Apple/Google, which is governed by their privacy policies.

Third-Party Services

  • Apple Services: Touch ID, Face ID, iCloud Keychain integration - these services are provided by Apple and governed by Apple's privacy policies. Biometric data is stored in Apple's Keychain and never transmitted to us.
  • Payment Processors: Apple (App Store) and Google (Google Play Store) handle all payment processing. We do not receive or process any payment information.

Note: We do not use third-party analytics providers or cloud storage services for your vault data. All analytics data is stored locally on your device.

Your Data Rights

Access Rights

  • Data Access: View all personal data we hold about you
  • Data Portability: Export your data in standard formats
  • Data Correction: Correct inaccurate or incomplete data
  • Data Restriction: Limit how we process your data

Control Rights

  • Consent Withdrawal: Withdraw consent for data processing
  • Data Deletion: Request deletion of your personal data
  • Processing Objection: Object to certain data processing activities
  • Automated Decision Making: Opt out of automated processing

International Data Transfers

Since Oculock stores all your vault data locally on your device and does not transmit it to external servers, there are no international data transfers. Your data remains on your device regardless of your location.

The only data that may be processed by third parties (Apple or Google) is payment information, which is handled in accordance with their respective privacy policies and data protection laws.

Data Breach Notification

Since your vault data is stored locally on your device and never transmitted to our servers, there is no risk of a data breach affecting your vault data from our systems. However, if you become aware of any security issues with the app:

  • Immediately change your master password
  • Review your vault for any unauthorized access
  • Contact us at corporate@oculock.com to report the issue
  • We will investigate and provide security recommendations

If we become aware of any security vulnerabilities in the app itself, we will:

  • Release a security update as quickly as possible
  • Notify users through app updates and release notes
  • Provide guidance on any recommended security measures

Contact Information

For questions about this Data Policy or to exercise your data rights, contact us at:

  • Email: corporate@oculock.com
  • Data Protection Officer: corporate@oculock.com

Policy Updates

We may update this Data Policy from time to time. We will notify you of any material changes by posting the updated policy on our website and updating the "Last Updated" date.