Security FAQ
Answers to common questions about security, encryption, and privacy in Ente Locker.
Encryption
How is my data encrypted?
Ente Locker uses industry-standard encryption:
- Encryption: XChaCha20 and XSalsa20
- Authentication: Poly1305 MAC
- Key derivation: Argon2id
Your data is encrypted on your device before upload. Only you can decrypt it.
Learn more about Encryption.
Can Ente see my data?
No. Ente operates on a zero-knowledge model:
- Your encryption keys never leave your devices
- Data is encrypted before upload
- Ente's servers only store encrypted data
- We cannot decrypt your data even if required to
Is my data safe if Ente is breached?
Yes. In the event of a server breach:
- Attackers would only get encrypted data
- Without your password, the data cannot be decrypted
- End-to-end encryption protects your content
Your data is as safe as your password is strong.
Where is my data stored?
Your encrypted data is stored redundantly across multiple providers in the EU:
- Amsterdam, Netherlands
- Paris, France
- Frankfurt, Germany
We store 3 copies across 3 providers in 3 countries for reliability.
Account Security
What is the recovery key?
Your recovery key is a 24-word phrase that can recover your account if you forget your password. It's generated when you create your account.
Critical: Store your recovery key securely. Without it, you cannot recover your account if you forget your password and are logged out of all devices.
I forgot my password. How do I recover my account?
If you're logged in on any device:
- Open
Settings > Account > Change password - Follow the prompts to set a new password
If you're logged out of all devices:
- Open the login screen
- Tap Forgot Password
- Enter your recovery key (24 words)
- Create a new password
If you've lost both your password and recovery key:
Unfortunately, your account cannot be recovered. This is by design - it ensures no one else can access your data either.
Does Locker support two-factor authentication?
Yes. Enable 2FA in Settings > Account > Two-factor authentication.
We support:
- Time-based One-Time Passwords (TOTP)
- Hardware security keys (WebAuthn/FIDO2)
Can I change my password?
Yes. Open Settings > Account > Change password, enter your current password, then set a new one.
Your data does not need to be re-encrypted when you change your password.
Is my account shared with Ente Photos?
Yes. Ente Locker, Ente Photos, and Ente Auth use the same account. Your password, recovery key, and 2FA settings apply to all Ente products.
Your data in each product remains separate.
Lock Screen
What happens if biometric authentication fails?
After multiple failed attempts:
- Your device may require its passcode instead
- If PIN is configured in Locker, you can use that as fallback
- The app remains locked until successful authentication
Can I change my PIN?
Yes. Open Settings > Security > Lock screen > Change PIN and follow the prompts.
Is lock screen available on all devices?
Lock screen is available on all iOS and Android devices. The specific biometric options depend on your device capabilities:
- iOS: Face ID, Touch ID
- Android: Fingerprint, face unlock (device dependent)
Sync and Offline
How long does initial sync take?
Initial sync time depends on:
- Number of documents you have
- Your internet connection speed
Typically, sync completes within seconds to a few minutes.
Can I use Locker offline?
Yes. You can:
- View all previously synced documents
- Create and edit documents
- Search your documents
Changes sync automatically when you're back online.
Privacy
Does Ente track my activity?
No. Ente does not track:
- What documents you create or view
- Your search queries
- How you use the app
We collect minimal analytics for app stability only.
Has Ente been audited?
Yes. Ente's apps have been audited by:
- Cure53 (German cybersecurity firm)
- Symbolic Software (cryptography specialists)
- CERN (technical assessment)
Read more at ente.io/blog/cryptography-audit.