Privacy Policy

Last updated: 30 June 2026

HotKey OTP is built so that your two-factor secrets stay on your own devices. We designed it to collect as little as possible — here is exactly what that means.

Your 2FA secrets never leave your devices

The secret keys used to generate your one-time codes are stored only in the macOS Keychain on your Mac, encrypted by the operating system. If you enable iCloud Keychain, Apple syncs them end-to-end encrypted between your own Apple devices. We — the developers of HotKey OTP — never receive, see, transmit, or store your secrets or the codes generated from them. There is no HotKey OTP account and no server that holds your data.

The one thing the app sends over the network

When you enter a license key to unlock your subscription, the app contacts our payment provider, Polar, to confirm the key is valid and the subscription is active. The only information sent is:

• your license key;
• an anonymous identifier for the activation (so the app can tell which devices a key is used on);
• a device label you can see and change (for example “HotKey OTP on Hayk’s MacBook”).

This check runs when you activate a key and occasionally when the app launches. No account names, secrets, or generated codes are ever included. If your Mac is offline, the app keeps working from its last known state.

Payments

Purchases are handled entirely by Polar (polar.sh), which acts as the merchant of record. When you buy a subscription, Polar processes your payment and billing details on their own systems under their privacy policy. HotKey OTP never receives your card number or billing address.

Permissions the app may request

• Accessibility — only if you turn on auto-paste, so the app can type a code into the focused field. Used locally; nothing is recorded.
• Screen Recording — only if you use “Scan screen” to read a QR code shown on your display. The capture is processed on-device and never leaves your Mac.

Analytics & tracking

The app contains no analytics, telemetry, advertising, or third-party trackers.

Children

HotKey OTP is a utility for the general public and is not directed at children under 13.

Changes

If this policy changes, the date above will be updated. Material changes will be noted on this page.

Contact

Questions about privacy? Email haykbar@gmail.com.

← Back to HotKey OTP