Your codes.
Your device.
Your privacy.

Pangi is a two-factor authenticator (TOTP) app for iPhone and Apple Watch. It generates time-based one-time passcodes for your online accounts and stores your authenticator secrets securely on-device in the Apple Keychain — not in the cloud, not in a plain database.

Your secrets are stored in the Apple Keychain with hardware-backed protection, guarded by Face ID, Touch ID, or Optic ID. Backup files use AES-256-GCM encryption with PBKDF2 key derivation (100,000 iterations). iCloud sync encrypts everything on your device before any data leaves it.

No. Pangi contains no advertising SDKs and no third-party analytics. The app does not send your data to any external server other than your own private iCloud database when you choose to enable sync. Your authenticator secrets never leave your device unencrypted.

Recovery codes are one-time codes that services like GitHub, Google, and Apple provide in case you lose access to your authenticator. Pangi lets you store them alongside your accounts, encrypted at rest with AES-256-GCM using a per-account key that never syncs to iCloud.

If you use iCloud sync, recovery codes use per-field merge logic — a stale edit on one device won't overwrite a used-mark on another. Legacy plaintext recovery code blobs are automatically migrated to the encrypted format on first read.

Yes. Pangi offers optional encrypted iCloud sync with end-to-end encryption via AES-GCM. Account data is encrypted on your device before being uploaded to your private CloudKit database — iCloud stores only encrypted payloads that Pangi decrypts locally. An offline sync outbox buffers your changes when you're not connected, and conflict resolution uses whole-record last-write-wins based on timestamp. You can disable sync at any time and the cloud copy is removed.

Yes. Pangi includes an Apple Watch companion app (watchOS 11+) that displays your TOTP codes and countdown timers right from your wrist. You can also copy a code to your iPhone clipboard directly from the watch — the clipboard auto-clears after 30 seconds. Accounts sync securely from your iPhone using Apple's WatchConnectivity framework.

Yes. Pangi supports Google Authenticator's export QR code format. You can scan the migration QR code with the camera or import from a screenshot in your photo library. Pangi also supports standard otpauth:// QR codes and encrypted Pangi backup files.

Pangi is available in English and German. The app automatically matches your system language setting. Additional languages are in development.

If you have iCloud sync enabled, your encrypted accounts are recoverable on a new device signed into the same Apple ID. You can also create encrypted backup files to store separately as an additional safeguard.

If you lose both your device and your backup password, encrypted backups cannot be recovered — Pangi cannot access your data, by design.

Yes. Pangi offers a small widget (one account) and a medium widget (up to three accounts). Widget codes are automatically hidden when the device is locked to protect your privacy, and refresh automatically at each TOTP period boundary.

When you copy a TOTP code, Pangi automatically clears it from the clipboard after 30 seconds. The clipboard is also set to local-only mode so the code doesn't sync to your other Apple devices via Universal Clipboard. If you copy something else first, Pangi won't touch your new clipboard content.

Yes. Pangi includes an iOS Password AutoFill extension. When signing into a website or app, Pangi can appear in the QuickType bar above the keyboard to provide your one-time code directly — no need to switch apps and copy manually.