Privacy Policy for L3 Pass

Effective date: 11 May 2026

Welcome to L3 Pass (“L3 Pass”, “we”, “our”, or “us”). L3 Pass is a password manager application designed to securely store and manage credentials using device-based encryption and biometric authentication.

This Privacy Policy explains what information we collect, how we use it, and how we protect it.

1. Information We Collect

Information Stored on Your Device

L3 Pass stores password vault data locally on your device in encrypted form. This may include:

• Usernames
• Passwords
• Notes
• Website URLs
• Authentication-related metadata
• Device linking information

Sensitive vault data is encrypted before storage and is intended to be accessible only by you.

Biometric Authentication

L3 Pass may use biometric authentication features provided by your device operating system, such as fingerprint authentication, face authentication, or device PIN/passcode authentication.

Biometric information is never collected, stored, transmitted, or processed by L3 Pass directly. Biometric authentication is handled by the Android operating system and secure hardware components provided by your device manufacturer.

Camera Access

L3 Pass may request access to your device camera for features such as scanning QR codes to link devices, perform device pairing, or complete authentication workflows.

Camera data is processed locally on your device and is not uploaded, stored, or shared by L3 Pass.

Network Information

When using optional online features, L3 Pass servers may receive limited technical information including:

• IP address
• Device type
• Application version
• Connection timestamps
• Diagnostic or security-related logs

This information is used for service operation, abuse prevention, debugging, and security monitoring.

2. Information We Do Not Collect

L3 Pass is designed to minimise data collection.

We do not intentionally collect:

• Your master passwords
• Unencrypted vault contents
• Biometric data
• Personal photos or camera recordings
• Browsing history
• Keystrokes outside the application

We do not sell your personal information to third parties.

3. How We Use Information

We use collected information to:

• Provide and operate the service
• Authenticate linked devices
• Maintain security and prevent abuse
• Improve application stability and performance
• Diagnose technical issues

4. Encryption and Security

L3 Pass is designed with security as a primary goal. Security measures may include:

• Device-based encryption
• Android Keystore integration
• Biometric-gated key access
• Encrypted communications
• Limited server-side data storage

However, no system can guarantee absolute security. You are responsible for maintaining the security of your devices and accounts.

5. Data Sharing

We do not sell or rent your personal data.

We may share limited information:

• When required by law
• To comply with legal obligations
• To protect the security and integrity of the service
• With infrastructure or hosting providers necessary to operate the service

6. Data Retention

Locally stored encrypted vault data remains on your device until deleted by you.

Server-side logs and operational records may be retained for security, fraud prevention, backup, and operational purposes for a limited period of time.

7. Third-Party Services

L3 Pass may rely on third-party services or infrastructure providers, including:

• Google Play Services
• Firebase Cloud Messaging
• Cloud hosting providers
• Analytics or crash reporting providers, if enabled

These third parties may process limited technical information according to their own privacy policies.

8. Children's Privacy

L3 Pass is not directed toward children under the age of 13. We do not knowingly collect personal information from children.

9. International Data Transfers

Your information may be processed in countries outside your country of residence where data protection laws may differ. We take reasonable measures to protect information transferred internationally.

10. Your Rights

Depending on your jurisdiction, you may have rights including:

• Access to your data
• Correction of inaccurate information
• Deletion of personal information
• Restriction of processing
• Data portability

Because much of L3 Pass data is stored locally on your device, you may exercise many of these rights directly by deleting application data or uninstalling the application.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Updated versions will be posted at the official L3 Pass website or application listing.

12. Contact

If you have questions about this Privacy Policy, you may contact:

L3 Pass
Email: support@l3pass.com
Website: https://www.l3pass.com