Built for people who care about security
Six pillars that protect your accounts without slowing you down.
Passwordless login
Sign in with passkeys, magic links, or social accounts. No passwords to remember, leak, or phish.
Post-quantum protection
Every session is signed with ML-DSA-44 (FIPS 204). Your identity stays safe even against future quantum attacks.
Pairwise privacy
Each app receives a unique, app-specific identifier. No service can correlate your activity across other apps.
Multi-factor auth
Layer TOTP authenticators, SMS codes, email OTPs, or hardware security keys on top of every sign-in.
Recovery phrase
A BIP-39 mnemonic gives you a human-readable backup. Twelve or twenty-four words that restore your identity anywhere.
Trusted devices
Mark your personal devices as trusted to skip 2FA prompts. Configurable lifetime with one-click revocation.
What you get — free forever
The Personal tier is not a trial. Every security feature ships on day one, no credit card required.
How your data stays yours
Privacy is not a setting you toggle. It is the architecture.
Encryption at rest
TOTP secrets, OAuth tokens, and PQC keys are encrypted with AES-256-GCM before they touch the database. Even a full database breach reveals nothing usable.
Zero-knowledge design
Passwords are hashed with Argon2id. Reset tokens and backup codes are stored as SHA-256 digests. We cannot read your credentials because we never store them in plaintext.
No tracking, no profiling
Pairwise identifiers mean connected apps cannot correlate your accounts. There are no analytics pixels, no fingerprinting scripts, and no data sold to third parties.