Passie is a password manager for iOS and macOS. Your passwords, your file, your device. There is no Passie account, no Passie server, and no subscription — and we never see your data.
This policy covers the Passie apps. The Passie browser extension has its own policy: Browser extension privacy policy.
Passie stores your entries — site names, usernames, passwords, notes, and
attachments — in a standard KeePass .kdbx vault file. The vault is
encrypted on your device with a key derived from your master password (AES-256
or ChaCha20, Argon2id key derivation). Your master password is never
transmitted to us, and we cannot recover it. If you forget it, your data is
gone — there is no backdoor.
Nothing about your vault. Passie has no account system, runs no analytics or tracking, and does not transmit your passwords or browsing activity to any server we operate. We do not collect, sell, or share your personal information.
Your vault file lives wherever you keep it — on your device, in iCloud Drive, or in any file provider you choose. If you store it in iCloud Drive, syncing between your devices is handled entirely by Apple's iCloud and governed by Apple's Privacy Policy. Passie operates no server of its own and cannot read your synced files. The file stays encrypted in transit and at rest.
Passie can send crash and energy diagnostics through Apple's MetricKit to help us fix bugs. This is opt-in and turned off by default — you enable it under Settings → Advanced. These reports contain technical diagnostic data (such as stack traces) delivered via Apple; they never include your vault contents, passwords, or the sites you use. You can turn this off again at any time.
When you enable Passie as an AutoFill provider, the system credential store holds only the information needed to offer a match — the site or app identifier, the username, and an internal record reference. It never stores your passwords. Passwords are decrypted on your device only at the moment you choose to fill one.
If you enable Face ID or Touch ID for a vault, Passie stores a derived key (not your master password) in the device Keychain, protected by the device's secure hardware. It never leaves your device.
Passie does not embed third-party analytics, advertising, or tracking SDKs. The only external services involved are Apple platform services you already use (iCloud Drive for sync, MetricKit for the optional crash reports above).
Passie is suitable for all ages and is designed for families to share a vault. We do not knowingly collect data from anyone, regardless of age.
Passie is open source under the BSD-2-Clause license. Anyone can inspect, build, and audit it: github.com/shadone/passie.
If we make material changes to how Passie handles data, we will update this page and revise the date above.
Questions about this policy or about Passie's handling of your data: denis@ddenis.info.