Security & privacy

Your secrets never leave your device.

KeyRote is built so the things you're memorizing stay on your iPhone, under your control. Here's exactly how — in plain terms — and how you can check it for yourself.

Verified against the current app as of 30 June 2026

1

Two stores, kept apart.

A KeyRote secret is split across two places on your device. The secret value itself goes into the iOS Keychain — the same hardware-backed store iOS uses for its own passwords. Everything else — the name you gave it, dates, and your practice stats — lives in a separate on-device database.

Each side carries its own independent identifier. Your metadata has one UUID for itself, and holds a second, different UUID that points at the matching Keychain entry. So a Keychain value on its own is anonymous: there's no name attached to it, and nothing ties it back to your metadata. The app is the only thing that knows the two belong together.

2

It works fully offline.

KeyRote has no accounts, no servers, and no network features. It doesn't phone home, show ads, or send analytics. As of this writing, the app contains no networking code, no analytics or crash-reporting SDKs, and iCloud and CloudKit sync are switched off — so your secrets and your progress simply never leave the device.

And you don't have to take our word for it.

No connections
Nothing to upload, nowhere to send it
Serversnone
Accountsnone
Analytics SDKsnone
iCloud / CloudKitoff
3

Verify it yourself.

iOS can show you every network connection an app makes. Turn on App Privacy Report and check KeyRote for yourself — you'll find no network activity to show.

  1. Open Settings → Privacy & Security → App Privacy Report.
  2. Turn it on, if it isn't already.
  3. Use KeyRote as you normally would for a while.
  4. Come back and look for KeyRote in the report. There's no network activity to list.
4

Locked behind your device authentication.

Opening KeyRote uses your phone's own authentication — your face, your fingerprint, or your passcode — the same lock that protects the rest of your device. If your phone is locked, your secrets are too. KeyRote never adds a separate password for you to remember; that would just be one more thing to forget.

5

Your choice, per secret.

When you add a secret, you decide how it's kept. The choice is yours, and you can make a different one for each.

Recoverable
Stored so it can be shown again. This is what makes the graduated hints and a full reveal possible — handy for things you're actively learning.
One-way (hashed)
Stored as a one-way hash. KeyRote can still check whether what you typed is correct, but it can never turn that back into the original. Nobody — not even KeyRote — can ever reveal it. Best for your most sensitive secrets, where you only ever want to confirm you still remember.
This page explains how KeyRote handles your data in plain language. For the formal documents, see the Privacy Policy andTerms of Use.