At Techdobz, we prioritize your privacy and security. We are committed to ensuring that your data is safe while using our applications. Below is a breakdown of the security measures we take to protect your data and ensure the integrity of your experience.
1. Data Protection and Local-First Storage
All user data is stored locally on your device. We do not use external cloud storage or third-party servers to store your information. Your data remains in the application's directory within `.db` files on your device, ensuring that you have full control and visibility of your data.
- Your data is kept secure in local `.db` files, and can be reviewed by you at any time.
- Encryption is only applied to fields explicitly marked for sensitive data, and these fields are protected using AES-256 encryption.
- No hidden data is transmitted to our servers. Any data transmission is done with your consent for updates or backups.
2. End-to-End Encryption
For fields marked as sensitive, we ensure end-to-end encryption. Data is encrypted on your local device and can only be decrypted with your master password.
- Encryption is implemented using PBKDF2-HMAC-SHA256 to derive a secure key and Fernet encryption (AES-256) to encrypt sensitive data like passwords, private notes, etc.
- Your master password is never stored, and it is used solely for deriving the encryption key to decrypt your data.
- Only data explicitly marked as encrypted is stored in an encrypted format. Everything else remains in plaintext for transparency, ensuring easy access without compromising security.
3. No Tracking or Data Collection
We respect your privacy. Our app does not collect any personal data, track your usage, or involve any analytics unless you opt to send feedback or error reports. We do not use any tracking cookies or third-party services to monitor your behavior.
- There are no trackers, cookies, or any other mechanisms designed to monitor your usage of the app.
- Any data shared externally is under your control, typically for bug reports or feature requests.
4. SHA256 and MD5 Hashing for Downloaded Files
To ensure the integrity of the application you download, we provide SHA256 and MD5 hashes. You can use these hashes to verify that the downloaded files have not been tampered with during transmission.
- SHA256 offers a secure method for verifying the integrity and authenticity of downloaded files.
- MD5 serves as an additional verification method, allowing users to confirm the downloaded file is unaltered.
- Check the provided hashes against your downloaded files to confirm their legitimacy and avoid any unauthorized changes.
5. Security and Privacy Best Practices
We encourage users to take the following steps to maximize security:
- Use a strong, unique master password and change it periodically.
- Enable multi-factor authentication (MFA) where possible for additional security.
- Ensure your device is up to date with the latest security patches.
- Be mindful of phishing attempts and other social engineering tactics that might attempt to trick you into revealing your master password.
6. Transparency and Communication
We are committed to transparency in our security practices. If you have any questions, concerns, or suggestions regarding the app's security or privacy, we encourage you to get in touch with us.
You can reach us by email at [email protected] for any security inquiries, bug reports, or feature requests.
7. Public Repository for Transparency
To ensure full transparency and allow for community-driven improvements, the source code of the app is available on GitHub. If you have any concerns or want to contribute to the project, please visit our public repository:
Techdobz Zero App GitHub Repository
8. Documentation and Resources
For more information on how we handle data, encryption, and security features, please refer to the official documentation: