Privacy Policy

1. Introduction

Your privacy is our top priority. SecurePass360 is designed according to the "Privacy by Design" principle. This policy describes how we handle your data, in full compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679 and applicable Italian laws.

2. Local Storage and Encryption (Zero-Knowledge)

SecurePass360 operates on a "Zero-Knowledge" architecture. This means that:

• All your passwords and sensitive data are encrypted locally on your device before being saved.
• We use military-grade encryption standards (AES-256).
• We do not have access to your Master Password or decryption keys.
• Your data is never sent to our servers in plain text.

3. Data Collected

We collect only the data strictly necessary for the operation of the service:

• Email: For account management and security communications.
• Payment Data: Handled entirely by secure payment processors (e.g., Stripe/PayPal). We do not store your card details.
• Technical Logs: IP addresses and anonymized technical data for server security and abuse prevention.

4. Data Sharing

We do not sell, trade, or transfer your personal data to third parties.

Data remains under your exclusive control. The only exception is compliance with binding legal obligations.

5. Your Rights (GDPR)

In compliance with GDPR, you have the right to:

• Access your data.
• Rectify your data.
• Erase your data ("Right to be forgotten").
• Export your data (Portability).

To exercise these rights, contact us at [email protected].

6. Contact Us

SecurePass360 Ltd.
Via della Sicurezza Digitale, 101
Milano, Italia
Email: [email protected]