You don’t have to take our word on all of this. OpenKeychain is an open source project. Anyone can study the source code and make an informed decision.
We do not run infrastructure
OpenKeychain is an app that provides end-to-end encryption for other protocols, such as email. We do not run infrastructure or provide cloud services.
Public keys created in OpenKeychain can be uploaded to public keyservers. These are not run by us and thus we are not responsible for them. By default the Ubuntu Keyserver is used.
OpenKeychain requests certain permissions to provide full functionality. More precisely, it may request permission to use the device’s camera, access the addressbook, or access files on your device.
Data aquired using these permissions is not shared with cloud services.
- The camera permission is required to scan QR Codes.
- Accessing the contacts is required to link keys to contacts in your address book. This is done offline.
- Access to files on your device is requested to open existing files for encryption or decryption.
OpenKeychain uses analytics, to gather feedback on how the App is used in practice and where we can improve.
Analytics are disabled by default, and will be enabled only if the user explicitly agrees. We collect general usage statistics only, counting what dialogues the user goes through, and what features and settings they use. We explicitly gather no personally identifiable data, which includes no Key IDs or IPs. The data we gather is never shared with any third parties. Statistics are collected on a self-hosted Matomo instance, and not on a cloud provider.