Privacy Policy

Effective: April 26, 2026

Authenticator Liberty (App Store listing: Authenticator Peter, bundle id com.peter.authenticator) is a native macOS application. It does not collect, transmit, or share any personal data.

Data we collect

None. The app has no servers, no analytics SDK, no telemetry, no crash reporting, no advertising identifiers. We do not have an account system. We do not see your TOTP secrets, your device, or your usage patterns.

Where your data lives

TOTP secrets are stored in your Mac's local Keychain (service identifier com.peter.authenticator.secrets) using kSecAttrAccessibleWhenUnlocked. iCloud Keychain synchronization is explicitly disabled — your secrets stay on the single Mac where you imported them.
Account metadata (issuer, label, group, ordering) is stored in a local SwiftData database inside the app sandbox.
App preferences (e.g. "auto-launch at login", "hide from Dock") are stored in standard macOS UserDefaults.

Camera

The app requests camera access only when you open the Import window. The camera feed is processed entirely on-device, in real time, to scan QR codes exported from Google Authenticator (the otpauth-migration:// format) or any standard otpauth:// QR. No camera frames are saved, copied, or transmitted.

Network

The app does not need internet access for its core functionality. The macOS App Sandbox includes com.apple.security.network.client only to allow optional future updates such as fetching favicons by issuer domain; this is not used in the current release.

Children

The app is not directed to children under 13. We do not knowingly collect data from anyone, regardless of age.

Changes

If this policy ever changes, the updated text will be posted on this page with a new effective date.

Contact

Questions about privacy: garmashov@me.com.