Your data.
Your rules.
Privasys ID is an identity provider that physically cannot see your data. Your name, your email, your profile live on your phone, not on our servers. Sign in to any service. Share only what you choose. We never hold a copy.
Most companies hold your identity. We refuse to.
“Sign in with Google.” “Sign in with Facebook.” Every login leaks who you are, what you use, and when. Then it sits on a server, waiting for the next breach.
Your phone holds your personal data. Our servers don’t.
The safest way to protect data is not to have it. So we built an identity provider that doesn’t. Your data stays on your phone, in your secure hardware. We verify your identity. We never see it.
Four promises. No fine print.
Nothing to breach.
We don’t store your personal data. If our servers were stolen tomorrow, there would be nothing inside.
No passwords. Ever.
Your face or fingerprint replaces every password. The key lives in your phone’s secure chip and cannot be phished, copied, or guessed.
You verify the server.
Before you authenticate, your phone checks that the service is genuine and unchanged. Trust flows both ways, not just from you.
Fully open source.
Every line of code that protects your identity is public. Privacy you can audit, not privacy you have to believe.
The privacy law was right. The architecture was wrong.
Max Schrems took Facebook to court and won, twice. The Court of Justice struck down Safe Harbour. Then Privacy Shield. The principle is now settled European law: your personal data belongs to you, and no contract, policy or transfer agreement can wash that away.
But every “Sign in with” button still ships your identity off to a server that promises to behave. GDPR turned that promise into a legal obligation. We turned it into an architectural impossibility. Privasys cannot misuse data it does not hold, cannot share data it cannot read, and cannot transfer data that never left your phone.
Compliance by construction, not by paperwork. A new model for personal data: minimisation, purpose limitation and user control, enforced in hardware rather than promised in a privacy policy.
Your identity, in your pocket.
The Privasys Wallet turns your phone into a passwordless authenticator. It stores your identity in your device’s security chip, lets you import attributes from Google, Microsoft, GitHub or LinkedIn, and shares only what you approve, one attribute at a time.
For developers: drop-in OIDC. Zero PII liability.
If your app supports “Sign in with Google,” it can support Privasys. Standard OIDC. Standard JWT. Your users get hardware-backed passwordless sign-in. You get only the claims you actually need, and never have to store the rest.