Privacy Policy

Last updated: April 2026

Data Collection

We do not collect TOTP secret keys or personal authentication data. Specifically:

• Google Analytics (GA4) may use cookies for anonymized, aggregated usage statistics only
• No TOTP secret keys or personal authentication data are tracked
• No user accounts or registration is required
• No TOTP secret keys or authentication data are sent to any server
• No advertising networks are integrated

You can opt out of Google Analytics by installing Google's opt-out browser add-on.

How TOTP Keys Are Handled

When you enter a TOTP secret key on 2FA Live:

• The key is processed entirely in your browser using the Web Crypto API
• The key is never transmitted over the network
• The key is never stored in any persistent storage
• Once you close or refresh the page, all entered keys are permanently discarded

Third-Party Services

2FA Live loads the following external resources for UI purposes only:

• Google Fonts — for typography (Orbitron, Inter, JetBrains Mono)
• Font Awesome — for icons (loaded via CDN)

These services may collect anonymized usage data according to their own privacy policies. No data specific to your TOTP secrets is shared with these services.

PWA & Offline Usage

2FA Live can be installed as a Progressive Web App (PWA). When installed, it caches only the application code for offline access. No user data is cached or stored locally by the service worker.

Transparency

2FA Live is provided by Narrapedia. All operations happen client-side in your browser, ensuring complete transparency and privacy.

Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be reflected on this page with an updated "Last updated" date.

Contact

If you have any questions about this Privacy Policy, please contact us via Narrapedia.