Your Master Password is used as a secret code to code your data.
If you are interested in technology, we give below a technical description of what we mean by "coding" and "secret". Without getting into technical details, just remember for now that your Master Password is known by you only. It is never sent to Privowny's servers. It is used to encode your sensitive data. By default, passwords are encoded with it. Once encoded, data is sent over the internet over a secure session (SSL) and then stored in Privowny's database. Once you log in from a different device, your data is retrieved from Privowny's database, sent to your device and you can decode your data by providing the Privowny client with your Master Password.
For the geeks:
For encrypting your data, PDA uses a process based on the highest security standards and algorithms (RSA-public key/private key pair, SHA, AES, PBKDF2 , …). The two tenants of our privacy protection are:
- Your encrypted data remains unreadable - encrypted - in our databases so the information is useless to us
- You are the only person who can see - decrypt - the value of your encrypted data.
At the time you register, a pair of keys are generated: Public and Private keys. The Public Key is used to encrypt data. Privowny can use your Public Key - and by definition, a Public Key is public. What is that? Because data encrypted with a Public key can only be decrypted with its associated Private Key. Your Private Key is critical to read data. So in order to protect your Private Key, you use your Master Password to encrypt it (with a strong encryption algorithm). And that is why your Master Password is so important. Without it, your Private Key is no longer accessible and encrypted data can no longer be decrypted.