Skip to main content

Legal

Privacy Policy

How Novash handles account metadata, encrypted payloads, and support communications. Last updated: April 20, 2026.

Zero-knowledge posture

This page is placeholder legal copy. Replace with counsel-approved text before launch.

1. Introduction

At Novash ("we," "our," or "us"), we are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our password manager service.

By using Novash, you agree to the collection and use of information in accordance with this policy. We operate on a zero-knowledge architecture, meaning we cannot access your encrypted vault contents.

2. Information We Collect

2.1 Account Information

When you create an account, we collect identifiers required to operate the service (such as an email address) and authentication material that does not reveal your master password.

2.2 Encrypted Data

Passwords, notes, and other vault items are encrypted on your device before transmission. We store and synchronize ciphertext without the ability to render your plaintext vault.

2.3 Usage Data

We may collect diagnostics needed to keep the service reliable. Configure telemetry to match your product policy and describe it precisely here.

3. How We Use Your Information

  • To provide and maintain the service
  • To notify you about meaningful changes
  • To provide customer support
  • To detect, prevent, and address technical issues

4. Data Security

We use industry-standard measures designed to protect information, including:

  • Strong encryption for stored vault material
  • Zero-knowledge architecture for vault contents
  • Transport security for client connections

5. Data Sharing and Disclosure

We do not sell your personal information. We may disclose information when required by law, to protect users, or with your explicit consent.

6. Your Rights

Depending on jurisdiction, you may have rights to access, correct, delete, export, or restrict processing of personal data. Describe your process and timelines here.

7. Data Retention

Describe retention windows for account records, ciphertext, logs, and backups. Include what happens after account deletion.

8. Children's Privacy

The service is not directed to children under the age required by your jurisdiction. Describe parental controls and reporting steps.

9. Changes to This Privacy Policy

We may update this page. Material changes should be communicated using an approach appropriate to your product (email, in-app notice, or both).

10. Contact Us

If you have questions about this Privacy Policy, contact us at:

Email: privacy@novash.example
Support: support@novash.example