Back to Home
Privacy Policy
Last updated: January 2025
Our Commitment to Privacy
PassLink is built with privacy as its core principle. We use zero-knowledge encryption, which means we technically cannot access your secrets even if we wanted to.
What We Collect
We Do NOT Collect:
- Your original secrets or passwords
- Encryption keys (they never reach our servers)
- Personal information or account data
- IP addresses (no logging)
- Cookies for tracking
We Store Temporarily:
- Encrypted data blobs (unreadable without the key)
- Expiration timestamps
- Optional password hashes (for protected secrets)
All data is automatically deleted after viewing or expiration.
Zero-Knowledge Architecture
The encryption key is embedded in the URL fragment (after the #). By design, URL fragments are never sent to servers. This means:
- We cannot decrypt your secrets
- We cannot read your secrets
- Even if legally compelled, we have nothing to provide
Data Retention
Encrypted data is stored for a maximum of 7 days (or less, based on your selection). Data is permanently deleted when:
- The secret is viewed (immediate deletion)
- The expiration time is reached
Analytics
We may use privacy-respecting analytics to understand usage patterns. This does not include any secret content, encryption keys, or personal data.
Contact
For privacy questions, contact us at privacy@passlink.click