← All posts

Passkeys and Your Data: How Wardrowbe Keeps Both Safe

Wardrowbe Team7 min read
Fingerprint on phone screen illustrating passwordless passkey authentication for Wardrowbe

You're about to photograph every piece of clothing you own and upload it to an app. That's a reasonable moment to ask: who can see this? Where does it go? And is my account actually secure?

These are the right questions. Most apps dodge them with vague privacy policies nobody reads. We'd rather just answer them directly.

Your Wardrobe Data Stays Yours

Let's start with the biggest concern: what happens to your data.

We don't collect it. We don't sell it. We don't train AI on it.

That's not a marketing line buried in a terms page — it's the architecture. Here's what that means in practice:

Self-Hosted: Nothing Leaves Your Network

If you run the self-hosted version, your wardrobe data lives on your hardware. Your server, your database, your photos. Wardrowbe doesn't phone home, doesn't send analytics, doesn't ping external servers. There is no telemetry.

Your clothing photos, outfit history, style preferences, and wardrobe analytics exist on a machine you control. Delete it, back it up, move it — it's yours to manage however you want.

Cloud: Private by Design

On the cloud plan, your data lives on our infrastructure — but it's isolated to your account and encrypted at rest. What we don't do:

What some apps doWhat Wardrowbe does
Sell user data to advertisersNever. No ad partnerships, no data brokers.
Train AI models on your photosNever. Your photos train only your personal style profile.
Share data with "partners"Never. No third-party data sharing of any kind.
Track behavior for analyticsNo behavioral tracking. No pixel tracking. No fingerprinting.
Keep data after you delete your accountAccount deletion removes everything. No retention period.

The AI that tags your clothes and learns your style runs per-account. Your data improves your suggestions — nobody else's. When you teach the AI your preferences, that learning is private to you.

Passkeys: Why They're Better Than Passwords

Now let's talk about how you log in. Wardrowbe uses passkeys — and if you're not familiar with them yet, here's why they matter.

What Is a Passkey?

A passkey replaces your password with biometric authentication. Instead of typing a password, you unlock with:

  • Face ID / Face recognition on your phone or laptop
  • Fingerprint via Touch ID or a fingerprint sensor
  • Device PIN as a fallback

That's it. No password to remember, no password to get stolen, no password to reuse across sites.

How Passkeys Work (Simply)

When you create an account with a passkey:

  1. Your device generates a unique cryptographic key pair
  2. The private key stays on your device (never leaves it)
  3. The public key is stored on the server
  4. To log in, your device proves it has the private key using biometrics — without ever sending the key itself

The server never sees your biometric data. It never sees your private key. It only verifies a mathematical proof that your device produced. Even if someone hacked the server, there's no password or biometric to steal.

Passkeys vs. Passwords

PasswordsPasskeys
Phishing riskHigh — you can be tricked into entering it on a fake siteNone — passkeys are bound to the real site
Reuse riskHigh — most people reuse passwordsNone — each passkey is unique per site
Brute forcePossible if password is weakImpossible — cryptographic keys can't be guessed
Data breach exposurePassword hashes can be crackedNothing useful to steal — public keys are useless without your device
User effortRemember, type, manage in password managerTouch your fingerprint or glance at your phone
Account recoveryForgot password → email reset (another attack vector)Synced across devices via iCloud/Google — always available

Passkeys are better on every axis. They're faster, more secure, and require zero mental effort.

"But What If I Lose My Phone?"

This is the most common concern, and it's solved. Passkeys sync across your devices through your platform's secure sync:

  • Apple devices — passkeys sync via iCloud Keychain across all your iPhones, iPads, and Macs
  • Android devices — passkeys sync via Google Password Manager across all your Android devices
  • Windows — passkeys sync via Windows Hello and can be stored in compatible password managers
  • Cross-platform — password managers like 1Password and Bitwarden now support passkeys across all platforms

Lose your phone? Log in from your laptop. Get a new phone? Your passkeys restore from your cloud backup automatically. The recovery story is actually better than passwords — you don't need to remember anything.

"What If the Site Doesn't Support Passkeys Anymore?"

Passkeys are built on open standards (WebAuthn/FIDO2) backed by Apple, Google, and Microsoft. They're not a startup experiment — they're the agreed-upon replacement for passwords, supported by every major platform. Your browser already supports them.

"I Don't Trust Biometrics"

Your biometric data never leaves your device. The passkey system uses your fingerprint or face only to unlock the cryptographic key stored locally. The server doesn't receive your biometric — it receives a signed challenge that proves you're you. Your face scan stays on your phone, exactly like it does when you unlock your device today.

How Wardrowbe Uses Passkeys

Wardrowbe's authentication is powered by PocketID, an open-source OIDC provider that supports passkeys natively. Here's the login flow:

  1. Tap "Sign In" on Wardrowbe
  2. PocketID prompts your passkey — Face ID, fingerprint, or device PIN
  3. You're in — authenticated with a secure token, no password involved

For the self-hosted version, you run your own PocketID instance (or any OIDC provider). Your authentication server, your rules. For the cloud version, PocketID handles authentication with passkeys enabled by default.

The mobile app also supports Apple Sign-In, which uses the same biometric-based authentication under the hood.

Why This Matters for a Wardrobe App

"It's just clothes — why does security matter?"

Because your wardrobe data is more personal than you think:

  • Photos of everything you own reveal your economic status, lifestyle, and personal taste
  • Outfit history maps your daily routines, locations, and social calendar
  • Style preferences are behavioral data that advertisers would pay for
  • Family wardrobe data includes information about your household members, including children

A wardrobe app that sells this data could build a detailed profile of your life. That's why Wardrowbe's approach is the opposite: no collection, no sharing, no training. Your closet is private — digitally and physically.

The Full Security Stack

For the technically curious, here's what protects your Wardrowbe account:

  • Authentication: Passkeys via PocketID (WebAuthn/FIDO2), OIDC, Apple Sign-In
  • Transport: HTTPS/TLS for all connections
  • Tokens: JWT with expiration and refresh rotation
  • Data: Encrypted at rest on cloud plan, your own encryption on self-hosted
  • Photos: Stored server-side only (self-hosted: your server; cloud: isolated storage)
  • AI Processing: Per-account model context, no cross-user data mixing
  • Open Source: Full code available for audit

Getting Started

  1. Self-host Wardrowbe with Docker Compose — maximum privacy, your hardware
  2. Or start a free trial of the cloud version — passkeys enabled, zero data collection

Set up a passkey in under 30 seconds. Then digitize your wardrobe knowing that your data stays exactly where it should — with you.

Read more about privacy-first fashion or explore all features.