Secure Authenticator
Terms of Use Privacy Choices

Last updated: July 5, 2026

Privacy Policy

This Privacy Policy explains how Moms Space (“we”, “our”, or “us”) handles information in connection with Secure Authenticator (the “App”). We wrote this policy to align with Apple’s App Review privacy requirements as of July 5, 2026, including public access, data-handling transparency, and user deletion/contact rights.

1. Scope

This policy applies to the App, our support communications for the App, and any public privacy pages we provide for App Store review and user access.

2. What the App is designed to do

Secure Authenticator is designed to let users add authenticator entries and generate time-based verification codes. The App is intended to work on-device whenever possible.

3. Data we collect

We aim to minimize collection. Depending on how you use the App, we may process the following categories of information:

  • Authenticator entry data stored on device. Account names, issuer names, secrets, labels, and related settings used to generate one-time codes. This information is intended to stay on your device unless you choose to export, share, or back it up through services you control.
  • Camera access. If you scan a QR code to add an entry, camera access is used to read the QR code. We do not use the camera for advertising or unrelated tracking.
  • Biometric or device-authentication access. If you enable App Lock, the App may use Face ID, Touch ID, or device authentication to help restrict access locally on your device. Biometric data itself is handled by Apple’s system frameworks; we do not receive or store your biometric templates.
  • Support information you choose to provide. If you email us, we may receive your email address and the information you include in the message.
  • Limited diagnostic information. If you voluntarily submit bug details, screenshots, or crash context when contacting support, we may use that information to troubleshoot the issue you reported.

4. Data we do not intentionally collect for server-side profiling

  • We do not state that we sell personal data.
  • We do not state that we use authenticator secrets for advertising.
  • We do not state that we build remote marketing profiles from authenticator entries.
  • We do not state that we track users across third-party apps or websites for targeted advertising.

5. How data is collected

  • Directly from you when you manually enter an account, scan a QR code, or contact support.
  • From your device when you enable local security features such as App Lock.
  • From support communications you initiate.

6. How we use data

  • To provide the App’s core authenticator functionality.
  • To protect access to the App through local security settings.
  • To respond to support requests and troubleshoot issues you report.
  • To comply with applicable law, enforce our policies, or protect users, our services, and our rights.

7. Legal basis and consent

Where consent is required, we rely on your permission or device-level authorization, such as camera permission or biometric/device-authentication approval. You can refuse or revoke permissions through your device settings. If you contact us, you choose what information to include in that communication.

8. Data sharing

We do not share user data except where reasonably necessary for the purposes described above, such as:

  • when you ask us for support and choose to send information to us;
  • when disclosure is required by law, legal process, or regulatory obligation; or
  • when needed to protect the security, rights, and integrity of the App, our users, or the public.

If a third party ever receives user data in connection with App operations, we require that party to protect the data at least as described in this policy and as required by applicable law.

9. Data retention

  • On-device data: Authenticator entries and local settings remain on your device until you delete them, remove the App, or reset the relevant data.
  • Support communications: If you contact us, we may retain the correspondence for as long as reasonably necessary to respond, troubleshoot, document support history, enforce our policies, or satisfy legal obligations.

10. Deletion and revocation rights

You can revoke camera or biometric permissions in your device settings at any time. You can delete authenticator entries inside the App or remove the App from your device. If you have emailed us and want support-related information deleted where legally permissible, contact us at Developer@moonspace.com.

11. Security

We use reasonable measures to protect information we receive. Because authenticator data is sensitive, users should also protect their devices with a passcode and review backup settings they personally enable. No method of storage or transmission is perfectly secure, and we cannot guarantee absolute security.

12. Children’s privacy

The App is not marketed as a children’s app. We do not knowingly collect personal information from children in a way that would require special treatment beyond applicable law. If you believe a child has sent us personal information, contact us and we will review the request.

13. International use

If you contact us from outside your home jurisdiction, your information may be processed where we or our service providers operate, subject to applicable legal protections.

14. Changes to this policy

We may update this policy from time to time. The current version will be posted on this page with the updated effective date.

15. Contact us

  • Operator: Moms Space
  • Email: Developer@moonspace.com