Your password is never sent to any server. We use the k-anonymity model with the Have I Been Pwned API to check securely.
How It Works
Secure Hashing
Your password is hashed locally using SHA-1 before any check is performed.
K-Anonymity
Only the first 5 characters of the hash are sent, protecting your full password.
Real-Time Check
Instantly check against billions of compromised passwords from known breaches.