Privacy Policy

Data stored by the app

The app stores the bookmarks you add, including encrypted URLs, encrypted titles, encrypted notes, tags, creation dates, deletion state, and the key version needed to decrypt each item.

The app also stores settings such as auto-lock timing, browser preference, sorting preference, recently deleted behavior, keyboard shortcuts, and your local Plus entitlement state.

Encryption and sync

TresorLink encrypts bookmark content on device using Apple's CryptoKit. Vault keys are stored in Keychain and may sync through iCloud Keychain when enabled on your Apple devices.

Encrypted bookmark records may sync through Apple's CloudKit-backed storage. The synced vault content is ciphertext; TresorLink cannot decrypt it without the keys stored on your devices.

If you delete app data from your devices or iCloud, or disable Apple sync features, Apple controls the availability and retention behavior of those Apple services.

Safari extension

The Safari extension can read the current tab title and URL when you use it to save or quick-add the current page. That information is sent to the native TresorLink app on the same device and encrypted before storage.

When you open bookmarks through the extension, decrypted URLs are handled locally by the extension session so Safari can navigate to them. Extension session keys are temporary and kept out of persistent browser storage.

Apple services and purchases

TresorLink uses Apple services such as iCloud, iCloud Keychain, CloudKit, StoreKit, and App Store purchase infrastructure.

TresorLink Plus purchases and subscriptions are processed by the App Store. TresorLink reads StoreKit product and transaction status to unlock Plus features.

Website and intent page

The TresorLink website does not use analytics scripts or advertising trackers.

Like most websites, the hosting provider may process technical request data such as IP address, browser information, requested URL, referrer, and timestamps in server logs for security, abuse prevention, and reliable delivery.

The intent page at https://tresorlink.com/intent/open is used only to hand off an open-bookmark action to the Safari extension. The actual bookmark URL is resolved locally by the extension and is not placed in that website URL.

Support messages

If you contact support, TresorLink will process the information you choose to send, such as your email address, message, screenshots, diagnostics, or any other details you include.

Sharing

Data may be processed by Apple when you use Apple platform services, by the website hosting provider when you visit the site, or where required to comply with law, protect users, or respond to valid legal process.

Retention and control

Your vault data remains in the app, local app storage, and, when enabled, your iCloud account until you delete it or remove the app data through Apple platform controls.

Recently deleted bookmarks are retained according to your in-app setting unless you delete them immediately.

Support messages are retained only as long as reasonably needed to respond, maintain records, protect rights, or meet legal obligations.

Legal bases

Where the EU GDPR or UK GDPR applies, TresorLink relies on the legal bases that fit the specific processing: performance of a contract or requested service for app features, iCloud-backed sync, extension actions, purchases, and support; legitimate interests for security, abuse prevention, troubleshooting, service reliability, and responding to support requests; legal obligation where records or responses are required by law; and consent where a law or platform permission requires consent.

Where Swiss data protection law applies, TresorLink processes personal data according to the FADP principles of transparency, purpose limitation, proportionality, data security, and justified processing where required. The practical purposes are the same: providing the app, protecting the service, responding to support, and meeting legal obligations.

TresorLink does not intentionally collect special-category or particularly sensitive data. Your bookmark choices may reveal sensitive interests, but bookmark titles, URLs, and notes are encrypted on your device and are not readable by TresorLink.

TresorLink does not use profiling or automated decision-making that produces legal or similarly significant effects.

Your rights

If the EU GDPR or UK GDPR applies, you may have the right to be informed, access your personal data, correct inaccurate data, request deletion, restrict processing, receive portable data where the portability conditions apply, object to processing based on legitimate interests, withdraw consent where processing is based on consent, and lodge a complaint with your data protection authority.

If Swiss data protection law applies, you may have the right to request information about whether personal data about you is being processed, have inaccurate data corrected, request deletion or destruction in certain situations, object to processing, request restriction where the conditions apply, receive portable data where technically possible and legally required, and report unresolved concerns to the FDPIC.

Some rights are limited by law, security, third-party rights, technical feasibility, or the fact that TresorLink cannot identify or decrypt certain data without your device-controlled keys. TresorLink may need enough information to verify and respond to a request.

Because vault content is encrypted and controlled by your devices and iCloud account, many practical requests can be completed directly in the app, by deleting app data, or through Apple account and iCloud controls. App Store purchase and subscription data is handled through Apple.