1. What the App Does
Keyo is a digital identity wallet that stores verifiable credentials (e.g. digital IDs, driving licences) on your device, allows you to present them to verifiers, and lets you receive new credentials from issuers โ in accordance with the EU Digital Identity (EUDI) framework.
2. Data Stored on Your Device
All credentials and cryptographic keys are stored locally on your device only. The App does not operate a cloud database of user credentials or identity documents.
| Data | Where stored | Why |
|---|---|---|
| Verifiable credentials | Device local storage | To allow you to present them when needed |
| Cryptographic key material | Device secure storage | To sign presentations and prove credential ownership |
| Transaction log | Device local storage | To show you a history of issuance and presentation events |
3. Camera Permission
The App requests access to your device camera android.permission.CAMERA solely to scan QR codes when:
- Receiving a credential offer from an issuer
- Initiating a credential presentation to a verifier
No images or video are recorded, stored, or transmitted. Camera access is used only to decode a QR code URL and is immediately released afterwards.
4. Network Access
The App connects to external services only when you explicitly initiate an action:
- Credential issuance: connects to the issuer endpoint encoded in the credential offer QR code or URL.
- Credential presentation: connects to the verifier endpoint to submit a presentation response.
No background network activity or telemetry is performed.
5. Authentication
If you sign in with an identity provider (e.g. Microsoft Entra External ID), your account is used solely to keep your wallet data isolated from other users on a shared device or web instance. Your credentials are never shared with the identity provider.
6. Data Sharing
The App does not sell, rent, or share your personal data with third parties. Credential data is disclosed only when you explicitly choose to present a credential to a verifier.
7. Data Retention and Deletion
You can delete all stored credentials and wallet data at any time by uninstalling the App or using the delete option within the App. All locally stored data is permanently removed upon uninstall.
8. Children's Privacy
The App is not directed at children under 16. We do not knowingly collect data from children.
9. Changes to This Policy
Material changes to this policy will be reflected in an updated "Last updated" date at the top of this page.
10. Contact
For questions about this privacy policy, open an issue in the project repository or contact the maintainers via the repository's contact information.