Security & privacy

Here we explain, in plain terms, how RemoteGuard handles your data. We deliberately promise nothing that isn’t technically true – transparency matters more to us than marketing. The legally binding document is the privacy policy.

How do you protect my privacy from other users?

Your email address is never shown to anyone else – it’s only for your login and visible only in your own profile settings. Others see only your freely chosen username and a lock’s name. Technical identifiers (internal IDs) are shown to no one.

Invitations work through an invite code you share yourself – you don’t need to know the other person’s email address and you don’t reveal your own.

Am I anonymous?

Honestly: not fully anonymous, but pseudonymous. To others you appear only under your username. We require no real name and no phone number and we don’t access your address book. There’s no advertising, no ad trackers and we don’t sell data. We do need an email address to sign in.

Is my data encrypted?

• In transit: all connections between the app and the backend use TLS/HTTPS – encrypted.
• At rest: security-critical lock credentials (e.g. lock credentials / emergency PIN) are stored encrypted with a server-managed key. Access is only possible through secured functions and is logged.

Is the chat end-to-end encrypted?

Yes. Chat messages and photos are end-to-end encrypted (per-device encryption, AES-GCM with X25519 key exchange). In normal use the backend cannot read either text or images. Optionally you can set up a recovery key so a new device can read the old chat history.

Then why aren’t the lock credentials end-to-end encrypted?

A deliberate choice. Unlike the chat, the lock credentials need emergency and recovery paths: if a device is lost or emergency access is needed, the access must remain recoverable on the server. With true end-to-end encryption that would be impossible in principle. These data are therefore encrypted server-side; access is tightly limited by permissions, isolation and logging.

Who can see my data?

Every database table is protected with row-level security. You only see data about your own locks and shares. A lock action or a share can only be performed by someone authorized to do so – enforced server-side, not just hidden in the app.

What about photos in the chat?

Photos sent in the chat are stored encrypted in private storage. Only the two participants of a share can retrieve them via time-limited, signed links. Only someone with an active share who isn’t blocked can upload.

And if someone misbehaves?

In the chat you can block people and report messages. Because the chat is end-to-end encrypted, only a report discloses the relevant excerpt for review (confirmed by the reporter). This also satisfies the app stores’ requirements for user-generated content.

Which permissions does the app need – and why?

• Bluetooth: to find and operate supported locks nearby.
• Camera / photos: only if you take or send a photo in the chat yourself.

No location or advertising data is collected through them.

Can I get rid of my data again?

Yes. You can delete your account and data. Details on processing are in the privacy policy.